A security exploit within the FCKEditor's php connector has prompted a new release of Geeklog to address this issue.
Apparently this flaw allows for malware to end up being hosted on some Geeklog powered sites by using this exploit. As a result, this new version is available to resolve.
“Geeklog 1.6.0sr2 is now available for download and ships with a much more restrictive configuration for uploads through FCKeditor. There's also an archive to upgrade from 1.6.0sr1 and an updated version of the drop-in FCKeditor replacement for older Geeklog versions.”
I'm a tech geek that began CMS Critic in 2008 to help focus on the Content Management Industry. Since that time, the industry has changed and this site has changed with it. Here you'll find my personal musings, rants and raves, reviews and more on all sorts of topics.