The Habari Community announces the release of version 0.5.2. This version is a critical security update; all users of any version prior to 0.5.2 should upgrade at once. Additionally users of HEAD should also update to the latest revision.
This update addresses security issues reported at secunia.com, related to unsanitized user input via the URL enabling a "less critical" XSS vulnerability. Using this vulnerability, malicious users could craft an external link that when clicked by a logged-in user could cause harmful data loss. Developers interested in the extent of the changes should review the makaanga 0.x branch log.
Thanks are due to the entire community for identifying and patching this bug in a timely manner.
... upgrade is strongly advised for everyone running 0.5 or 0.5.1. You can download version 0.5.2 from here and follow the upgrade instruct...
...t/tag/blog" rel="tag">blog and habari Habari 0.5.2 Released,這個版本修補了一個嚴重的安全漏洞,所有使用 0.5.1 的用家建議即時更新...
...at to see that the habari guys are committed to security as well as functionality and are providing security updates for there pre-1.0 software. It is a pity to see that they don’t disclose much in there secu...
... gelesen habe, gibt es ein weiteres Sicherheitsupdate für Habari.Die Entwickler empfehlen dringend ein Update. Tags ¦ Habari, ...
...It was bound to happen to Habari eventually, right? And in the dark recesses of my mind, I'm happy for two reasons. First because at...