You are here: start » glfusion » whatsnew

What's New in glFusion v1.2.2

glFusion v1.2.2 continues our commitment to providing a secure and robust content management system. This releases contains some significant stability updates and several small bug fixes. All glFusion users are encouraged to upgrade as soon as possible.

For those who are upgrading, please don't forget to run the Upgrade Wizard after you have loaded the files to your server.

There were no template changes in v1.2.2.

Notable Enhancements for glFusion v1.2.2

  • Updated Czech language files from Ivan
  • Fixed hard coded language string (Groups) in admin/user.php
  • Mail to user (admin user edit screen) did not work properly
  • German language update from AndrĂ©
  • FileMgmt - Display max allowed filesize in admin upload screen
  • Updates to better support MySQL 5.5
  • Do not show Awaiting Verification in user edit as an option when user does not enter their own password
  • Fixed bug where user's password was not properly checked to determine if blank when registering a new user

Full ChangeLog (all changes since original 1.2.1 release)

  • Updated Bad Behavior Plugion to v2.0.43
  • Fixed typo in lib-security
  • Fixed issue with token expiration when in admin functions
  • Fixed permission check for story edit
  • Calendar: Fixed permission check for anon users adding master calendar events
  • Fixed performance issue with forum lists when user rating enabled
  • Fixed bug where validation email requests would fail
  • Fixed issue deleting comments
  • FileMgmt: Expand autotags when displaying comments
  • Implemented global autotag recursion checks
  • Advanced story editor has some 'quirks' in IE
  • Fixed SQL error when creating FileMgmt content syndication
  • Updated MSN IPs for Bad Behavior2 Plugin
  • Bad Behavior provides an option to allow cross-site POST requests; these are meant to be blocked by default as most sites do not need to receive form data submitted from other sites. However, the option to enable it for those sites which do need it had inverted logic, resulting in cross-site requests being allowed when the option was set to disallow them, and vice versa.
  • Fixed missing call to CUSTOM_userEdit() in user profile panel
  • Fixed an issue with the plugin uploader where it could overwrite existing configuration files during plugin updates.
  • Fixed issue with URL parser retrieving URL parameters when only $_SERVER['orig_path_info'] is set.
  • Removed global <li> style from SiteTailor stylesheet.
  • Added some safety checks to dvlpupdate.php
  • Security Fix - bbcode implementation suffered from several XSS vulnerabilities. Reported by Saif El-Sherei
  • Fixed plugin uninstall to not crash if plugin directory is missing
  • Removed unneeded log message in user create

What's New Archives

v1.2.1
v1.2.0
v1.1.8
v1.1.7
v1.1.6
v1.1.5
v1.1.4
v1.1.3
v1.1.2
v1.1.1
v1.1.0
v1.0.1
v1.0.0

glfusion/whatsnew.txt · Last modified: 2011/04/24 15:25 by Mark
 
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3