We are pleased to come up with patch 4.6.28 which features :
- Correction of two code embedding security XSS flaws. ( thanks you Saxbar, jchouix, JeanMi )
- Correction of a squeak in mktime in agenda ( thanks you Saxbar )
Many thanks to High-Tech Bridge Security Research Lab for very kind notice.
Beware! All GuppY versions are concerned, no exception.
You REALLY MUST INSTALL AT ONCE this correction patch to keep up with security on your site.
As with each new version, please do not forget to update your plugins, reinstall your forks, and revalidate your configuration pages.
To move up from the 4.6.26, 4.6.27, 4.6.27-1 to 4.6.28 version, you must use this patch_nc_4628.
Thank you for your understanding and we apologize for these errors.
