Package: serendipity Version: 1.5.3-2 Summary of the problem from upstream:
"Xinha ships with several plugins that utilize PHP scripting for special usage, like the ImageManager or ExtendedFileManager. A 0-day security exploit has been reported available as of today that exploits the functionality of these plugins to upload malicious files to your webspace, to execute foreign code." Full details (and recommended fixes) at: http://blog.s9y.org/archives/224-Important-Security-Update-Serendipity-1.5.5-released.html -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
