Versions:

This document contains information for an outdated version and may not be maintained any more. If some of your projects still use this version, consider upgrading as soon as possible.

3.0.11

Minor security release

Security

  • 2014-04-16 9d74bc4 Potential DoS exploit in TinyMCE - See [announcement SS-2014-009](http://www.silverstripe.org/download/security-releases/ss-2014-009)
  • 2014-05-05 9bfeffd Injection / Filesystem vulnerability in generatesecuretoken - See [announcement SS-2014-010](http://www.silverstripe.org/download/security-releases/ss-2014-010)
  • 2014-05-07 0099a18 Folder filename injection - See [announcement SS-2014-011](http://www.silverstripe.org/download/security-releases/ss-2014-011)

Bugfixes

  • 2013-06-20 f2c4a62 ConfirmedPasswordField used to expose existing hash (Hamish Friedlander)

Changelog

Was this article helpful?