Apparenty Gallery versions 1.3.1, 1.3.2, 1.3.3, 1.3.4, 1.3.4-pl1, 1.4, 1.4-pl1, 1.4-pl2, and 1.4.1 have a serious security flaw which requires patching.
We have discovered a well-hidden but potentially serious security flaw in these versions of Gallery which can allow a hacker to remotely exploit your webserver. All Gallery users are strongly urged to upgrade to 1.4.1-pl1 immediately, which fixes this serious problem and will secure your system.
You can either upgrade to version 1.4.1-pl1 or if you are currently running 1.4.1 there is a small zip file which you can download which updates a couple of files.