Just yesterday the development team was notified of a critical SQL injection bug in all versions of LifeType 1.0.5 and we are happy to announce than in less than 24 hours, there is a new maintenance release fixing this issue. The issue should have not been there had the development team been more careful, but we tried to fix it as soon as humanly possible. We would like to thank 'rgod' for reporting the issue.

As with any release, packages are available in .ZIP, .TAR.GZ and .TAR.BZ2 format from Sourceforge.net:

lifetype-1.0.5.zip
lifetype-1.0.5.tar.gz
lifetype-1.0.5.tar.bz2

Please keep in mind that is not necessary to run wizard.php if you are upgrading from any 1.0.x version to 1.0.5, as there are no changes in the database schema. Simply upload the files and overwrite all older files except the configuration files under the config/ folder.

Additionally, we have "update only" packages from LifeType 1.0.4 to 1.0.5, which only include new or modified files. These packages can not be used to upgrade from 1.0, 1.0.1, 1.0.2, 1.0.3 but only from 1.0.4 to 1.0.5. There is no need to run wizard.php to upgrade to this release. Just upload the files and you are good to go:

lifetype-1.0.4-upgrade-lifetype-1.0.5.tar.gz
lifetype-1.0.4-upgrade-lifetype-1.0.5.zip

There is a full list with all the issues fixed in this release in Mantis (select the filter called "Fixed in 1.0.5")

Please use the LifeType forums or the LifeType bug-tracker in case you need to discuss anything or report any bug related to LifeType 1.0.5. In the meantime, the development team will continue working on LifeType 1.1 (more news on that soon)