fGallery exploit fixed

fGallery exploit described here is fixed in version 2.4.2 available for download at the plugin page.

Fix includes proper escaping of the url and checking if the “album” is numeric. If “album” is not numeric the script dies and therefore the exploit can not be executed.

Thanks to all of you who made me aware of this exploit and I apologize for any problem it may have caused.

One Response to “fGallery exploit fixed”

  1. sohbetmerkezi 2010/04/23 12:34

    very nice thank Sesli sohbet
    Sesli chat dostum

Leave a Reply

You must be logged in to post a comment.