since a year or so there is stil the security issue published re
[SA19379] CoMoblog "img.php" Cross-Site Scripting Vulnerability
has this bulnerability been solved meanwhile or still an issue ??
That fix is currently only in CVS and will be released in 1.2
If you wish you can pull the latest img.php file from CVS and overwrite your existing copy to protect yourself in the mean time - but it's only really a problem if you let multiple people you don't trust post to your blog.
thanks for th efast reply
i made chmod 000 after i found the security issue online - since i post via online form and have all pics on my webspace image folders and never never via cellphone
but in future versions it s goot to knwow that all holes are closed
I had hackers on my site last winter / different SW - long time and very active - i have no desire to repeat that experience once more in life
Log in to post a comment.
Sign up for the SourceForge newsletter:
You seem to have CSS turned off.
Please don't fill out this field.