A sql injection has been brought forward for the Event plugin (
Link). This is not an exploit with Cotonti itself or a default plugin. So unless you are using the Events Plugin (
Link). Then you are ok.
Anyone using this plugin should upgrade immediately.
An updated secure version may be downloaded
here
Thanked: 52 times
Thanked: 263 times