Administrator Posted February 8, 2013 Share Posted February 8, 2013 Security Update: 7th February 2013A cross-site-scripting (XSS) exploit has been discovered in IP.Gallery. We are releasing a security update for versions 4.2.x and 5.0.x today to patch this issue.Instructions:Patching is very easy; Identify the version of IP.Gallery you are running. Download and unzip the appropriate patch file below that matches your version. Upload the contents of the zip to your /public/js directory, overwriting the existing file. IP.Gallery 4.2.x ipg42_feb13.zip 831bytes 0 downloadsIP.Gallery 5.0.x ipg5_feb13.zip 2.41K 2 downloadsNotes: When you apply the security update the bulletin in your AdminCP will still display. We keep the bulletin in place for at least a week after a security release. Our main software packages accessed via the client area have already been updated with this security update. Our thanks to Mohamed Ramadan ( Attack-Secure.com / https://twitter.com/Attack_Secure ) for bringing this to our attention. View the full article Link to comment Share on other sites More sharing options...
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!Register a new account
Already have an account? Sign in here.Sign In Now