« XML-RPC vulnerabilityStats performance tuning »

SQL injection vulnerability

04/18/05

SQL injection vulnerability

A moderately critical security advisory has been posted here: http://secunia.com/advisories/13718/

Methods to fix this issue are described here: http://forums.b2evolution.net/viewtopic.php?t=2695

We are encouraging all b2evo users to update their installation.

3 comments

Comment from: kiesow  
kiesow

but there’s no NEW security risk, it’s only the old one from january, right?

2005-04-18 @ 18:22
greenman

Nope, there seems to be a more recent one - see my blog post about the exploit.

2005-04-20 @ 16:20
Comment from: kiesow  
kiesow

your posting is very unspecific.

2005-04-20 @ 20:28