Security update

Changes since 6.x-2.1:

• Use rewrite query on node retrieval.
• Add documentation for php binding installation on Debian Squeeze.
• minor: fix watchdog messages on _xapian_recursive_rmdir() function.
• #695562: Remove local xapian database on uninstall.

Fixes DRUPAL-SA-CONTRIB-2014-031
Note: For some people, the previous behavior was actually exactly how they used this module. To restore the original functionality, go to the settings ( admin/config/content/webform_template ) and check the "Defeat node access" checkbox.

The fifth official stable release.

WARNING: This release includes a stronger authentication process for incoming messages which is backward incompatible. If you are using this feature, make sure to use the HMAC method with the new key generated during the update process to authenticate your messages.

The following patches have been committed since the 1.3 release:

Bug fixes

• Public files test incorrect if similar path is not below root.

The fifth unofficial release and snapshot of current functionality for Drupal 7.

WARNING: This release includes a stronger authentication process for incoming messages which is backward incompatible. If you are using this feature, make sure to use the HMAC method with the new key generated during the update process to authenticate your messages.

The following patches have been committed since the beta2 release:

Bug fixes

• Public files test incorrect if similar path is not below root.

Properly restrict the users a masquerader can masquerade as via the "Enter the users this user is able to masquerade as" user profile field.

Properly restrict the users a masquerader can masquerade as via the "Enter the users this user is able to masquerade as" user profile field.