* Fixed a potential code inclusion vulnerability involving the user language selection. * Properly fixed the search.php SQL injection that was uneffectively dealt with in 1.2.7. * Fixed an XSS vulnerability involving the "forgotten e-mail" feature. * Fixed "bare linefeed" problem with external SMTP servers.