A news in xoops.org
http://www.xoops.org/modules/news/article.php?storyid=4093Quote:
we advise you to upgrade to XoopsGallery 2.1+ or inactivate the module immediately until this issue is solved.
inactivate sounds non sense.
This kind of RFI targets just a file.
Remove all files from your server just after backing up it.
And I cannot find XoopsGallery 2.1+ at all.
Have they checked 2.1+ secure enough?