Movable Type vulnerability


#1

On top of the recent phpBB crapfest, there’s a new hole in Movable Type which allows spammers to send mail to arbitrary addresses. I’ll announce tomorrow and work on some sort of system to find (and eventually patch) these, but please patch up, folks!

http://www.movabletype.org/news/2005/01/movable_type_315_release.shtml