The wisest mind has something yet to learn.
George Santayana

Latest Vanilla

Vanilla 1.1.4

Tuesday, October 23rd, 2007

There is a serious vulnerability in Vanilla 1.1.3 and below, allowing remote SQL injection. A security update has been released – upgrading requires just replacing the affected files, as listed on the Vanilla upgrade page.

With exploit code already published this is an urgent mandatory update – don’t delay!

Download Vanilla forum

Posted in Updates, Vanilla | Comments Off on Vanilla 1.1.4

Vanilla 1.1.3

Monday, September 24th, 2007

Lussumo has released a new version of the minimal forum application Vanilla with  bug-fixes including at least one security fix (XSS vulnerability). This is a required update.

Download Vanilla forum

Posted in Updates, Vanilla | Comments Off on Vanilla 1.1.3