New release is out. Not so many changed, but 2 quite important bugs squashed. Categories now show on main page, and setting for thumbnail size now works. Please report bugs on SourceForge or here if you find any

Update: Fixed one more bug for the day and created release 0.2.2.1

In the beginning of april a person claimed to have found a vulnerability in XodaGallerys administration.php You can find it here for example.

However, it seems to me that this person did not bother even having a look at the code. He claims that you can gain access trough the querystring in administration.php?cmd=Command as if it were including a file. The ?cmd= though, is only tested against static values - so I have a hard time to see this alleged vulnerability. If you have any ideas, please contact me.

I also think it’s really suspicious not to even file a bug here at sourceforge or contact me, only to spread the info on other places on the Internet.