Files changed (1)
+We just fixed a serious security flaw in staticfilter. Basically, if you used staticfilter anyone could read any file on your system by requesting URLs with ".." in them. The fix is in SVN and we backported it to the 2.1.0 release. If you're running
+2.1.0 we recommend that you upgrade to 2.1.1 ASAP. Download links are on the <a href="/wiki/CherryPyDownload">download page</a>.<br />
There is a new CMS based on CherryPy. It also uses Cheetah, SQLObject and some Ajax. Here is the <a href="http://www.daimi.au.dk/~amix/skeletonz/">link</a>.
You can check the logs of what's happening on the IRC channel at <a href = "http://www.defuze.org/oss/cpirc/index.html">http://www.defuze.org/oss/cpirc/index.html</a>.