[pmwiki-users] AdvancedTableDirectives 08 28 2006 5:00 PM CST released

JB jbit at ev1.net
Mon Aug 28 17:06:38 CDT 2006


I've just released a new version (08 28 2006 5:00 PM CST) of 
AdvancedTableDirectives available from:
 
    http://www.pmwiki.org/wiki/Cookbook/AdvancedTableDirectives

   
http://www.pmwiki.org/pmwiki/uploads/Cookbook/AdvancedTableDirectives.php

The primary purpose of this release is to close a potential
cross-site scripting vulnerability that could allow an attacker
to inject Javascript statements for execution on visitors' browsers.
No known actual exploits of this vulnerability have been reported,
but the vulnerability has been publicly reported on the
pmwiki-users mailing list.
 
For those who are running older versions of AdvancedTableDirectives, 
the vulnerability can be avoided by either upgrading to this release, 
or by restricting page editing privileges to trusted individuals.  

Comments, questions welcome as always.

Jb





More information about the pmwiki-users mailing list