|Topic:||Ability to generate invalid records in the comments table in the database|
|Versions affected:||< 2.0.3 (1.9.x not affected)|
|Reported by:||Sam Hemelryk|
|Solution:||Upgrade to 2.0.3|
|Workaround:||None - please upgrade as soon as possible|
This is a significant bug in the comments system which allows an authenticated user to fill the comments table in the database with completely invalid records.