No Support > Announcements

cpg1.4.27 Security release - upgrade mandatory!

(1/1)

Αndré:
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.4.26 or older update to this latest version as soon as possible.

How to update:
Users running versions prior to 1.4.27 should update immediately by downloading the latest version from the download page and following the upgrade steps in the documentation.

Support:
If you have problems with this update, please use the Update support board. Do not post your issues to this announcement thread - your post will be deleted without notice.

Why was cpg1.4.27 released?
The release covers a recently discovered XSS vulnerability that allows (if unpatched) a malevolent visitor to include own script routines. The Coppermine dev team would like to thank Ilja van Sprundel for reporting the vulnerability.

Thanks,
The Coppermine Team

François Keller:
French annoucement here
Annoce en Français ici

Navigation

[0] Message Index