diff options
Diffstat (limited to 'CHANGES.txt')
-rw-r--r-- | CHANGES.txt | 26 |
1 files changed, 23 insertions, 3 deletions
diff --git a/CHANGES.txt b/CHANGES.txt index fd9d0eef6..797fb9c62 100644 --- a/CHANGES.txt +++ b/CHANGES.txt @@ -1,14 +1,34 @@ Version 1.8.14 -(X xx, 2013 from https://github.com/Elgg/Elgg/tree/1.8) +(March 12, 2013 from https://github.com/Elgg/Elgg/tree/1.8) Contributing Developers: + * Aday Talavera + * Brett Profitt + * Cash Costello + * Ed Lyons + * German Bortoli + * Hellekin Wolf + * iionly + * Jerome Bakker * Luciano Lima + * Matt Beckett * Paweł Sroka + * Sem + * Steve Clay + + Security Fixes: + * Fixed a XSS vulnerability when accepting URLs on user profiles + * Fixed bug that exposed subject lines of messages in inbox + * Added requirement for CSRF token for login Bugfixes: - * + * Strip html tags from tag input + * Fixed several display issues for IE7 + * Fixed several issues with blog drafts + * Fixed repeated token timeout errors + * Fixed JavaScript localization for non-English languages Enhancements: - * Web services fall back to xml if the viewtype is invalid + * Web services fall back to json if the viewtype is invalid Version 1.8.13 |