Reference: http://secunia.com/advisories/47999/
Fixed multiple XSS vulnerabilities, some of which only theoricals, also includes bug fixes and some features.
This is a very important release!
Download here!
Discuss here!
I've created a new login system that will be implemented in Dragonfly CMS v10.
Thanks to that i've also noticed that OpenID and XRI don't have a nice way to manage your avatar.
This is not the task of OpenID since it's an authentication system, not a profile system.
Therefore i've launched a new webservice where you can manage your OpenID/XRI Avatar based on your claimed_id.
This is different from Gravatar because this webservice will not store any personal information.
To promote this service i will implement this feature in Dragonfly CMS v10 as additional option for Avatar selection.
Go try the beta at: http://claimedavatar.net/
And leave a comment in the forum topic