Download realname-6.x-1.5.tar.gztar.gz 26.09 KB
MD5: 9b50cc4de250590149665c2d0da36902
SHA-1: 46a70b44748a3eacf8fb65b019ce8e7ceddec1fa
SHA-256: 3f00f497778597eb7a5c1c678911aee5f58e7759ba8d5f1987dff63ff1dcfb21
Download realname-6.x-1.5.zipzip 32.1 KB
MD5: 4c73d825bb7e9a1694fb6dd0fcdaaa08
SHA-1: 0836990afda89bff604612802d4d6d5dc8b304b8
SHA-256: d5d6e89f6aaff5830ebf361453b12c909dadb2f39c6003ea6621aaf356cf6c50

Release info

Created by: Dave Reid
Created on: April 25, 2012 - 16:13
Last updated: April 25, 2012 - 19:49
Core compatibility: 6.x
Release type: Security update, Bug fixes

Release notes

See also SA-CONTRIB-2012-063 - RealName - Cross Site Scripting (XSS).

Changes since 6.x-1.4:

  • Fixed tokens output unescaped data. Added alternate raw versions of the tokens for unescaped data.
  • Fixing unescaped user names in page titles and autocomplete callbacks.
  • Re-backport drupal_static() and namespace as realname_static().
  • #1170180: Fixed PHP notice in realname_username().
  • #1276980 by hefox, Dave Reid: Remove call to eval() and replace with backported drupal_array_set_nested_value().
  • #1070102 by Dave Reid: Fixed regression with user picture not being overridden.
  • #1067836 by fivefrank: Fixed PostgreSQL does not like ORDER BY conditions used in count queries.
  • Removing translation files and template. Use localize.drupal.org now.