I got a lot of such email from my customers: “Thanks for you great service. I noticed in the Changelog.txt that you have just sended to me, that you have fixed a xxx security issue in my site. Could you show me the working exploits on it”.

We will never exhibition the security issues to public, because anyone can use it to attack the similar website. We only fix the issue and will send the patch to the author of the program.

We have already fixed the security issue and send you the Changelogs, you can check the code by yourself. And please do not publish it into public.