Install

Works with Drupal: 7.x

Using Composer to manage Drupal site dependencies

Downloads

Download tar.gz 217.87 KB
MD5: 6bcf9603b8b56112ebbead1e67f5b7b3
SHA-1: 9294ef5f046383b875e53b73de2b2ae3d1499bf9
SHA-256: d99ac861b7ea6eec5967131f801a54563ca78986020b49aff99a34315bf4d4a7
Download zip 502.94 KB
MD5: 10ca1b689f4057c4c4bb392e6943c735
SHA-1: fa71483cf88fd24dbf9072f7a8c026358b65c9d3
SHA-256: b2bf8efc73b6b8066b4b10eb4b4f1e4f5e5d24b22603c13eae06a9eb546b974d

Release notes

This is the seventh beta release of Authcache 2.0. This release brings one very important security fix and does not introduce any new features.

Sites using Authcache Block, Authcache Views and Authcache Field are vulnerable to an XSS attack through the administrative interface of the Authcache Personalization API module. This vulnerability is mitigated by the fact that an attacker must have a role with the permission Administer blocks, Administer views or any permission which allows to add or modify fields on any entity type (e.g. Administer content types).

See #2541886: XSS vulnerability in administrative interface for more information. Special thanks to @mr.baileys for reporting this issue and working on a fix.

In addition this release also contains fix for a bug introduced in 7.x-2.0-beta6 #2540542: Fragments missing since 7.x-2.x-beta6..

Use gitweb to review the full list of changes between beta6 and beta7.

Created by: znerol
Created on: 29 Jul 2015 at 07:49 UTC
Last updated: 12 Oct 2016 at 07:33 UTC
Git tag 7.x-2.0-beta7
Unsupported

Other releases