1.15 added security checks for input parameters (Elliot Kendall) Important!Wednesday July 23rd 2008All versions prior to 1.15 are vulnerable to command execution and cross site scripting attacks. A remote attacker could exploit these vulnerabilities to run arbitrary commands on the system with the permissions of the web server. Please upgrade to version 1.15 or higher. More information: http://userwww.service.emory.edu/~ekenda2/EMORY-2008-01.txt |