“Serendipity 1.1.3 and 1.2-beta2 have been released due to a SQL injection attack reported by Dr. Neal Krawetz today. It is possible to abuse a ‘commentMode’ variable to inject SQL code that was targeted to the function that fetches comment information. This variable was introduced to Serendipity 1.1 – all prior versions are not affected.”
This evening we were notified by fellow co-developer Sebastian Nohn about a full-disclosure posting about a Serendipity SQL injection matter. We have investigated this reported 0day issue, and can tell you that it is not a SQL injection,but instead “only”an SQL error display.
After the well-received Serendipity 1.1 release, we put our ears to the community and searched for any bugs left. Luckily, those were very few (like the IIS server cookie bug) – we didn’t at first believe it, so we let some time go by to be absolutely sure there were no other things to fix [...]
