CMS Critic » injection http://www.cmscritic.com In-depth CMS Reviews and editorials on Content Management. Tue, 21 May 2013 21:56:12 +0000 en-US hourly 1 http://wordpress.org/?v=3.5.1 Elgg 1.7.3 and 1.6.3 security releases http://www.cmscritic.com/elgg-1-7-3-1-6-3-security-releases/ http://www.cmscritic.com/elgg-1-7-3-1-6-3-security-releases/#comments Thu, 02 Sep 2010 17:12:57 +0000 Mike Johnston http://www.cmscritic.com/?p=2199 elggGeorg-Christian Pranschke from http://www.sensepost.com/ discovered a vulnerability in Elgg that could potentially allow SQL injection attacks using crafted URLs or POSTs. Versions 1.7.3 and 1.6.3 correct this and are highly recommended for all Elgg users. 1.7.3 also includes additional bugfixes for problems found in 1.7.2: Entering an invalid captcha now forwards to the referring page [...]

The post Elgg 1.7.3 and 1.6.3 security releases appeared first on CMS Critic.

]]> http://www.cmscritic.com/elgg-1-7-3-1-6-3-security-releases/feed/ 0