Is this initiative useful for you?

Make a paypal donation or get your movable type project done with PRO IT Service - The Excellence In Web Development.

We're the right people for movable type consultancy services including: installations, upgrades, themes, templates, consulting, troubleshooting as well as hosting.

The complete range of movable type services you might be looking for!

This is a personal website and doesn't have anything to do with Six Apart nevertheless Chris Alden, the former Six Apart CEO, appreciated my idea when he saw it available online.

December 2014 Archives

Movable Type 6.0.6, 5.2.11 and 5.18 Security Updates

user-pic
By Mihai Bocsaru on December 21, 2014 9:14 PM 0 0 Vote 0 Votes
On December the 9th, Six Apart launched a mandatory security update in the form of movable type v6.0.6, v5.2.11 and v5.18.

You should know that a vulnerability has been discovered in the Movable Type XML-RPC interface.

This vulnerability could be resolved by upgrading to one of the versions above, or it could be solved by disabling the 'mt-xmlrpc.cgi' script. An easy way to disable it is to remove its execute permissions.

On the other hand, be aware that if you disable the above mentioned .cgi script, your movable type installation won't be able to send out pings, such as say to ping the web services that you might have configured for your blog/website.

Worth mentioning is that this version, apart from fixing a security issue, includes also a bug fix related to the backup and restore feature. From now on, when restoring from a compressed backup file, items included with the backup file will also be restored.

Take a look at the latest product from:

Login as:
- username: demo
- password: testthis

Happy Testing!
« October 2014 | Blog Home | Archives | January 2015 »

Recent

Services

We would love to work on any movable type jobs you might have! To find out more about the movable type services we're offering click here.

You may like to know that we're offering a broad range of web development services as well as professional website hosting service in partnership with Pair Networks, Inc. from Pittsburgh, PA, USA.

Check out everything we're proudly doing by visiting http://www.pro-it-service.com/

Newsletter

Would you like to be updated every time there is a movable type release? If you do, then subscribe for email updates filling out the form below.

Subscribe

Delivered by FeedBurner

Open Melody

Did you know that "open melody" is a new, open source CMS meant to continue the development from movable type v4.x series?

We've established an absolutely free evaluation service for you to check this product.

Open Melody

http://www.openmelodydemo.org/

@ PRO IT Service we are offering a full range of movable type and open melody services!

  • Facebook
  • Twitter
  • Elsewhere