“The new versions are 2.11.9.6 and 3.2.2.1. According to the
developers’ advisory, the previous versions contain two programming
flaws that potentially can be exploited for cross-site scripting
(XSS) attacks and the injection of arbitrary SQL commands.”