This vulnerability has been fixed with the updated package of the script, released on 22 October 2008. Download it here: http://www.mdsjack.bo.it/index.php?page=mjguest#download