Critical hole in blogging software
A critical security flaw has been revealed in LifeType, Open Source software for weblogs and weblog hosting platforms. In a security advisory, the developers warn that attackers can use special URLs to gain access to critical data on the server. All versions up to and including LifeType 1.1.5 and LifeType 1.2-beta 1 are affected; the flaw has been remedied in versions 1.1.6 and 1.2-beta2.
- Critical security issue: Lifetype 1.1.6 and Lifetype 1.2-beta2 released, security advisory from LifeType
(ehe)