• info
• discussion
• exploit
• solution
• references

Geeklog HTML Attribute Cross Site Scripting Vulnerability

Solution:
The vendor has released a newer version of Geeklog to address this issue:


Geeklog Geeklog 1.3.5

• Geeklog geeklog-1.3.5sr2.tar.gz
  http://prdownloads.sourceforge.net/geeklog/geeklog-1.3.5sr2.tar.gz

Geeklog Geeklog 1.3.5 sr1

• Geeklog geeklog-1.3.5sr2.tar.gz
  http://prdownloads.sourceforge.net/geeklog/geeklog-1.3.5sr2.tar.gz