Continue reading "Invalid image file format" Error in Movable Type.
Recently in Security Category
Continue reading Six Apart Releases Movable Type 5.13, 5.07, and 4.38 Security Updates.
Under certain circumstances, a user who has "Create Entries" or "Manage Blog" pemissions may be able to read known files on the local file system.
That is bad, as it would allow a potential attacker to read things like configuration files etc. which may contain passwords or other sensitive information.
Continue reading Security Update: Movable Type 5.12, 5.06, and 4.37 Released.
Continue reading 10 Tips for Securing Your Movable Type Installation.
This comes just days after Six Apart announced a security upgrade for all Movable Type versions. The most likely scenario is that someone reverse-engineered the security fixes to discover which vulnerabilies were patched and then exploited them.PBS.org was owned via a 0day we discovered in mt4 aka MoveableType 4
Continue reading PBS.org Hacked, or Why It Is Important to Keep Movable Type Updated.