A patch file for Version 4.5.2 is available at http://mamboforge.net/frs/?group_id=5
This will patch Mambo 4.5.2 to Version 4.5.2.1
The patch is to fix a security vulnerability found to act on Tar.php (via the php GLOBALS bug, which has been recently discovered in PHP). It also includes a minor fix some cosmetic issues.
For new installs, you will need to first install Mambo 4.5.2 then apply the patch.
This bug in PHP affects a lot of applications. I am off to see what other apps I use that may also be vulnerable.
UPDATE:
All old releases are now available on the Mambo code forge, in a project called MOS Archive. If you want them, you can download the files there.
If you enjoyed this post, make sure you subscribe to my RSS feed!
