Skip to content

Commit 8715399

Browse files
committed
* Fix SQL injection for comment.php used in read-context.
(Thanks to High-Tech Bridge SA Security Release Lab, Advisory HTB23092)
1 parent a6f37ee commit 8715399

File tree

3 files changed

+8
-2
lines changed

3 files changed

+8
-2
lines changed

Diff for: docs/NEWS

+6
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,11 @@
11
# $Id$
22

3+
Version 1.6.2 (May 16th, 2012)
4+
------------------------------------------------------------------------
5+
6+
* Fix SQL injection for comment.php used in read-context.
7+
(Thanks to High-Tech Bridge SA Security Release Lab, Advisory HTB23092)
8+
39
Version 1.6.1 (May 8th, 2012)
410
------------------------------------------------------------------------
511

Diff for: include/functions_trackbacks.inc.php

+1-1
Original file line numberDiff line numberDiff line change
@@ -364,7 +364,7 @@ function add_trackback ($id, $title, $url, $name, $excerpt) {
364364

365365
if ($id>0) {
366366
// first check, if we already have this trackback
367-
$comments = serendipity_fetchComments($id,1,'co.id',true,'TRACKBACK'," AND co.url='$url'");
367+
$comments = serendipity_fetchComments($id,1,'co.id',true,'TRACKBACK'," AND co.url='" . serendipity_db_escape_string($url) . "'");
368368
if (is_array($comments) && sizeof($comments) == 1) {
369369
log_pingback("We already have that TRACKBACK!");
370370
return 0; // We already have it!

Diff for: serendipity_config.inc.php

+1-1
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,7 @@
4545
}
4646

4747
// The version string
48-
$serendipity['version'] = '1.6.1';
48+
$serendipity['version'] = '1.6.2';
4949

5050
// Setting this to 'false' will enable debugging output. All alpa/beta/cvs snapshot versions will emit debug information by default. To increase the debug level (to enable Smarty debugging), set this flag to 'debug'.
5151
$serendipity['production'] = (preg_match('@\-(alpha|beta|cvs)@', $serendipity['version']) ? false : true);

0 commit comments

Comments
 (0)