CppCMS 1.0.3 was released today, it includes security bug fix.
This bug allowed CppCMS encoding validation to accept some invalid UTF-8 sequences which could potentially lead to various security problems like XSS and more.
It is strongly recommended to upgrade to latest version.
Note: for thous who used
booster::locale::utf::utf_traits or functions
booster::locale::conv::utf_to_utf directly rather than using built in
CppCMS forms validation/XSS validation, you may need to recompile the
application to get the updates.
The release is available on sourceforge and in the official repositories for Ubuntu oneiric, precise and quantal, Debian squeeze, Fedora 16 and 17, Centos 6 and Open Suse 11.4 and 12.1