URGENT SECURITY ALERT:
SQL INJECTION EXPLOIT REPORTED -- Upgrade to 13.1 immediately to protect your site.
CRE Forum member Spitznas brought a security issue to the CRE Development team just after the release of Patch 13. After reviewing the code, CRE’s developers found the exploit to be real.
The SQL injection exploit was fixed in Patch 13.1. To resolve the issue, install Patch 13.1.
We urge all CRE Loaded 6.2 users to upgrade to this patch level.
Any new CRE Loaded download after January 31, 2008 has this fix in it already.