Download search_api-7.x-1.3.tar.gztar.gz 134.39 KB
MD5: cf8c67a0056fa385eedcdb5d013ae10c
SHA-1: 134db52e0b4a385f88c64320e0ac9327157827d4
SHA-256: b288bd198f2371e7f76de0a3199082fc9b250ec19d9a532d57d62a18435fd97b
Download search_api-7.x-1.3.zipzip 170.58 KB
MD5: c3b280d000c03c6396c0d7e9f45dc6fd
SHA-1: aaf4d0771e931220380a7e5f05196a0152b5f9e9
SHA-256: 174478dc8f62d3cb6d51311687e95f10d3b39257b15f3604b3bb6a207b82c32f

Release info

Created by: drunken monkey
Created on: October 17, 2012 - 08:01
Last updated: October 23, 2012 - 11:58
Core compatibility: 7.x

Release notes

See SA-CONTRIB-2012-156 - Search API - Cross Site Request Forgery (CSRF)

This is a security release, containing an important security fix. Users of the project are strongly encouraged to update to this version as soon as possible.
In older versions, the “enable server” and “enable index” functionalities aren't properly guarded against CSRF attacks, leading to an attacker being able to enable any disabled server and all disabled indexes that are connected to a server. See the security advisory for details.

Complete list of changes:


The selected release is the release that will be used for automated testing. Optional projects are only used for testing.



No optional projects