Dan Fuhry <dan@enanocms.org> [Tue, 12 Jul 2011 22:37:21 -0400] rev 344
Release prep 1.0.6pl4
Dan Fuhry <dan@enanocms.org> [Tue, 12 Jul 2011 22:13:37 -0400] rev 343
SECURITY: Fixed several XSS vulns reported by Secunia, mostly in Private Messaging. Also backported CSRF protection API from 1.1.x, and protected Private Messaging and logout functions.
Dan Fuhry <dan@enanocms.org> [Tue, 16 Nov 2010 12:44:22 -0500] rev 342
Retagged current-stable
Dan Fuhry <dan@enanocms.org> [Tue, 16 Nov 2010 12:43:24 -0500] rev 341
Tagged release: 1.0.6pl3
Dan Fuhry <dan@enanocms.org> [Tue, 16 Nov 2010 12:42:36 -0500] rev 340
Version bump to 1.0.6pl3 (the real release number)
Dan Fuhry <dan@enanocms.org> [Tue, 16 Nov 2010 12:20:50 -0500] rev 339
Version bump to 1.0.6pl2
Dan Fuhry <dan@enanocms.org> [Tue, 16 Nov 2010 12:19:13 -0500] rev 338
SECURITY: Fix SQL injection in banlist check
Dan Fuhry <dan@enanocms.org> [Mon, 28 Jun 2010 11:11:09 -0400] rev 337
Tagged release: 1.0.6pl2
Dan Fuhry <dan@enanocms.org> [Mon, 28 Jun 2010 11:00:51 -0400] rev 336
SECURITY: Multiple XSS in Special:ChangeStyle. Reported by Mesut Timur of Mavituna Security - thanks!
Dan [Mon, 28 Dec 2009 16:52:41 -0500] rev 335
Fixed a couple non-security sanitizer and editor bugs
Dan [Mon, 28 Dec 2009 12:19:47 -0500] rev 334
Updated current-stable tag
Dan [Mon, 24 Aug 2009 12:33:36 -0400] rev 333
Stable release: Enano CMS 1.0.6pl1
Dan [Sat, 22 Aug 2009 13:31:09 -0400] rev 332
Fixed lockup on unclosed HTML tags in wikiformat_process_block()
Dan [Sat, 22 Aug 2009 13:30:39 -0400] rev 331
Version bumped to v1.0.6pl1
Dan [Fri, 21 Aug 2009 11:50:22 -0400] rev 330
SECURITY: Comments: fix poor sanitization of subject on initial submit