PHP XML-RPC Vulnerability

The MidCOM news listing and weblog system uses the PEAR XML_RPC package for optional offline editing support.

A security vulnerability has been discovered in the package. This vulnerability may affect Midgard CMS installations. All users are suggested to upgrade to the latest 1.3.1 version of XML_RPC.

Upgrading the package is easy. Simply log in as administrator on your server and run:

pear upgrade XML_RPC