Recently in security Category
SixApart have released MovableType 4.24.
This release, while minor, is aimed at addressing a security issue which SixApart informed its partners about earlier during the week. They released a patch at the time, though have not provided any details as to what the actual security problem was.
The new version of MovableType does, however, bring one new feature - an improved password recovery method:
This release, while minor, is aimed at addressing a security issue which SixApart informed its partners about earlier during the week. They released a patch at the time, though have not provided any details as to what the actual security problem was.
The new version of MovableType does, however, bring one new feature - an improved password recovery method:
Rolled into the MTE 4.24, MT Pro 4.24, and MTOS 4.24 release, however, is an improved Password Recovery mechanism. Now only an email address is required for MT to trigger the recovery email, making the Password Hint obsolete.This is a welcome improvement!
SixApart have released mandatory security updates for both Movable Type 4 and Movable Type 3.*
Byrne Reese, Movable Type product manager, provided details of the potential vulnerability on a blog post earlier today.
The upgrade is relatively simple to install and does not affect templates or plugins.
Byrne Reese, Movable Type product manager, provided details of the potential vulnerability on a blog post earlier today.
The upgrade is relatively simple to install and does not affect templates or plugins.
