Thanks for the quick reply. I was runngin version 1.2.1 but just finished upgrading. The SQLServer stuff was a blog post of mine with that title. I really didn't think that there was a case of them being able to run executable code in the URL but just wanted to make sure. I have the integration into ...

My Serendipity blog was hacked today and my hosting provider is saying that it is a bug with Serendipty (don't all hosting providers blame the software and not their server :))

I'm not sure if this is possible but this is what they are saying was run:

GET /blog/index.php?/archives ...

Hello,

My hosting provider upgraded my account to PHP 5.2.5 and I'm now seeing a ton of undefined indexes. I upgraded Serendipity to 1.2.1 but that didn't reslove it either. Here are some random errors I'm seeing:

Notice: Undefined index: searchresult_noEntries in /templates_c/mt3-independence ...