logo
home forum bugs and suggestions documentation downloads downloads

 Hello unlogged user

[ _CREATEACCOUNT | Log in

 
Search
Main Menu
Contacts for the Project, Modules and Translations
Please use the Support & FAQ Forums if you have a general support question, but if you need to get in touch with any of the Project Personnel for specific areas: dotProject Contacts List
Get Firefox
For best results we suggest you use Mozilla Firefox.

Get Firefox!
SourceForge
SourceForge.net
Online
There are 0 registered users online.

You can log-in or register for a user account here.
 
 New Security/Bugfix release of dotProject 2.0.4 ::
 
 
Jun 23, 2006 - 11:39 PM :: Karen :: 28659 Reads ::

General NewsImportant Information

A new release of dotProject has been released today. Version 2.0.4 fixes a XSS (Cross Site Scripting) vulnerability in the handling of the login parameter, which may allow an attacker using a carefully constructed URL to gain information, such as cookie details, from a user's session.

This release also fixes a problem with upgrading from versions prior to 2.0.1. More information can be found in the ChangeLog on the dotProject download page.


All sites are urged to upgrade ASAP

For details on installing all versions of dotProject go to Installation Instructions

To download 2.0.4 go to Sourceforge - dotProject

For all support forums, faqs, documentation, bug listings etc. visit the main website at http://www.dotproject.net

IMPORTANT: Before upgrading please refer to Important 2.0.4 Announcement
 
 
Rating
New Security/Bugfix release of dotProject 2.0.4 | Log-in or register a new user account | 0 Comments
Comments are statements made by the person that posted them.
They do not necessarily represent the opinions of the site editor.

Web site powered by PostNuke ADODB database libraryPHP Language

All logos and trademarks in this site are property of their respective owner. The comments are property of their posters, all the rest (c) 2003 by me
This web site was made with PostNuke, a web portal system written in PHP. PostNuke is Free Software released under the GNU/GPL license.
You can syndicate our news using the file backend.phpDesign by Slackhat.
Copyright 2005, Slackhat. All Rights Reserved.