Download Size md5 hash
search_api-7.x-1.3.tar.gz 134.39 KB cf8c67a0056fa385eedcdb5d013ae10c 170.58 KB c3b280d000c03c6396c0d7e9f45dc6fd
Last updated: October 17, 2012 - 08:07

Release notes

See SA-CONTRIB-2012-156 - Search API - Cross Site Request Forgery (CSRF)

This is a security release, containing an important security fix. Users of the project are strongly encouraged to update to this version as soon as possible.
In older versions, the “enable server” and “enable index” functionalities aren't properly guarded against CSRF attacks, leading to an attacker being able to enable any disabled server and all disabled indexes that are connected to a server. See the security advisory for details.

Complete list of changes:

View change notices for this release
Official release from tag: