Fork me on GitHub

Thursday, September 25, 2008

XSS vulnerability in 0.804

Today Fabian Fingerle kindly contacted me to tell me about two nasty XSS bugs that slipped in FP0.804 (stable)

724682692_c99b632f15_m.jpg

The fix were trivial, and if you don’t want to download a whole new package, just overwrite

with those linked.

I’ll take this occasion to release a bugfix package, with the fixes you can find on the SVN stable branch (like feed validation and such).

You can get it from SourceForge.net as usual.

The new version is 0.804.1, svn rev.189

Thank you, Fabian

(img: bomb_icon by ten safe frogs)

  1. laborix

    Friday, September 26, 2008 - 20:19:06

    Thank you for fixing this XSS bugs. And thank you for the 0.804.1 release.

    Last week I’m working on a new german language pack, which includes many changes, also my own scribal errors. It’s now available in the Flatpress Wiki.

  2. rhymnfoerobom

    Wednesday, October 1, 2008 - 19:54:48

    Hi Nice site! G’night

  3. vik

    Friday, October 10, 2008 - 17:52:32

    please update the main page too, coz if i dont check your blog my sites remain vulnerable, thanks