Content Management System (CMS) | Open Source Content Management Software | Application Framework

irc://irc.freenode.net#webgui

iPhoneGuy: WebGUI is a pile of crap.
rizen: If WebGUI is such a pile of crap, why do you use it?
iPhoneGuy: Because it's the best pile of crap out there.

If this is what people who hate us are saying, imagine what people who love us will say. Come join us on IRC.

WebGUI 7.4.24 (stable) Released

User: Graham
Date: 2/15/2008 5:22 am
Views: 870
Rating: 2 Rate [ | ]

Fixes a security flaw due to improper sanitation of usernames. Usernames could be created containing macros and HTML, which could allow arbitrary javascript to be run by an administrator.

Changelog:

 - prevent HTML and Macro injection in usernames
 - fix: https and extra / in urls (perlDreamer Consulting, LLC.)
    http://www.webgui.org/bugs/tracker/https-and-extra-/-in-urls

Previous • Back • Next