Fork me on GitHub

Thursday, September 25, 2008

XSS vulnerability in 0.804

Today Fabian Fingerle kindly contacted me to tell me about two nasty XSS bugs that slipped in FP0.804 (stable)


The fix were trivial, and if you don’t want to download a whole new package, just overwrite

with those linked.

I’ll take this occasion to release a bugfix package, with the fixes you can find on the SVN stable branch (like feed validation and such).

You can get it from as usual.

The new version is 0.804.1, svn rev.189

Thank you, Fabian

(img: bomb_icon by ten safe frogs)

  1. laborix Avatar for laborix

    Friday, September 26, 2008 - 16:19:06

    Thank you for fixing this XSS bugs. And thank you for the 0.804.1 release.

    Last week I’m working on a new german language pack, which includes many changes, also my own scribal errors. It’s now available in the Flatpress Wiki.

  2. rhymnfoerobom Avatar for rhymnfoerobom

    Wednesday, October 1, 2008 - 15:54:48

    Hi Nice site! G’night

  3. vik Avatar for vik

    Friday, October 10, 2008 - 13:52:32

    please update the main page too, coz if i dont check your blog my sites remain vulnerable, thanks

  4. Anton Avatar for Anton

    Wednesday, April 13, 2011 - 10:23:32

    <b>Nice site</b> good luck

  5. online games Avatar for online games

    Friday, December 12, 2014 - 18:22:46

    I constantlpy emailed this blog pokst page to all my friends,
    as if like to read it next my contacts wikll too.

Add comment

Fill out the form below to add your own comments

User data

Add your comment

Powered by


Need to host your great FlatPress-powered website?

Then why not to consider our friends at A2 Hosting?


Click here to lend your support to: FlatPress and make a donation at !

You can also buy me a gift

FlatPress is not backed-up by any company. Making a small donation will help me to keep up with the project and will make you a happier person (I swear!)