Sun, 04 Sep 2011 02:32:49 -0400 SECURITY: Various security enhancements to password resets. They are now rate-limited by username and IP, and it is possible to disable username autofill for guests.
Dan Fuhry <dan@enanocms.org> [Sun, 04 Sep 2011 02:32:49 -0400] rev 1352
SECURITY: Various security enhancements to password resets. They are now rate-limited by username and IP, and it is possible to disable username autofill for guests.
Fri, 22 Jul 2011 23:14:06 -0400 Fixed CLI installer failing to set the DB version
Dan Fuhry <dan@enanocms.org> [Fri, 22 Jul 2011 23:14:06 -0400] rev 1351
Fixed CLI installer failing to set the DB version
Tue, 12 Jul 2011 22:49:40 -0400 Release: 1.1.8pl1
Dan Fuhry <dan@enanocms.org> [Tue, 12 Jul 2011 22:49:40 -0400] rev 1350
Release: 1.1.8pl1
Tue, 12 Jul 2011 22:34:02 -0400 Release prep 1.1.8pl1 1.1.8pl1
Dan Fuhry <dan@enanocms.org> [Tue, 12 Jul 2011 22:34:02 -0400] rev 1349
Release prep 1.1.8pl1
Tue, 12 Jul 2011 22:21:08 -0400 SECURITY: CSRF protection in Private Messaging, which is a really broken feature and should get the TinyMCE treatment. *sigh* Reported by Secunia.
Dan Fuhry <dan@enanocms.org> [Tue, 12 Jul 2011 22:21:08 -0400] rev 1348
SECURITY: CSRF protection in Private Messaging, which is a really broken feature and should get the TinyMCE treatment. *sigh* Reported by Secunia.
Tue, 12 Jul 2011 22:15:18 -0400 SECURITY: Fixed XSS in post-login page redirection. Reported by Secunia.
Dan Fuhry <dan@enanocms.org> [Tue, 12 Jul 2011 22:15:18 -0400] rev 1347
SECURITY: Fixed XSS in post-login page redirection. Reported by Secunia.
(0) -1000 -300 -100 -30 -10 -6 +6 +10 +30 tip