Condividi tramite


dasBlog Security Advisories

Dominick Baier has posted two security bullitens for dasBlog:

Security Advisory: Log File Path Predictability in dasBlog Community Edition

This issue may or may not affect you. On my host, this does not occur as they lock down /logs from anon users.

Security Advisory : New XSS Vulnerability in dasBlog Community Edition

This issue was fixed in the latest version of dasBlog.

Special thanks to Dominick for his work in this area.