added on Feb 1, 2011 by
I found a script vulnerability.
You can see it here: http://www.mlabs.info/linkex-dk-script-vulnerability/
I hope that someone will fix this
added on Feb 1, 2011 by
I'll look into it.
thanks for reporting it.
added on Feb 1, 2011 by
For now I have removed authorization via the admin cookie, so linkex will no longer support the "remember me"
feature.
LinkEX will always make sure the .htaccess is present in the data folder, to disallow access from files. If the host
does not support .htaccess protection it's true you can gain access to the config file.
added on Feb 4, 2011 by
When to expect a new release? When the fix to work with Google?
added on Feb 4, 2011 by
When to expect a new release? When the fix to work with Google?