The Tiki Wiki CMS Groupware project has released a security patch for its stable and LTS (long term support) versions. Both versions are available for immediate download.
Tiki 8.2 includes several bug fixes, feature enhancements, and security fixes.
Tiki 6.5 LTS (Long Term Support) includes several bug fixes and two security patches. There are no new features in this release.
Both releases address an XSS vulnerability identified by Mario Gomes and Marc Laporte using the Vega security scanner and other XSS vulnerabilities reported by Stefan Schurtz. Refer to the release notes and change logs for complete information.
All Tiki administrators are highly encouraged to upgrade to version 6.5 or 8.2. You can download these versions (and all other Tiki releases) from http://tiki.org/download.