Security update

Fix for SA-CONTRIB-2014-033 - Nivo Slider - Cross Site Scripting

Changes since 7.x-1.1:

• xapian:
  • Use efq to look-up the node.
• search_api_xapian:
  • Adds unique identifier as term to indexed document on search_api xapian services.
  • Create the search_api xapian local service database on first read too.
• An additional note on building for wheezy.

Changes since 6.x-2.1:

• Use rewrite query on node retrieval.
• Add documentation for php binding installation on Debian Squeeze.
• minor: fix watchdog messages on _xapian_recursive_rmdir() function.
• #695562: Remove local xapian database on uninstall.

Fixes DRUPAL-SA-CONTRIB-2014-031
Note: For some people, the previous behavior was actually exactly how they used this module. To restore the original functionality, go to the settings ( admin/config/content/webform_template ) and check the "Defeat node access" checkbox.

The fifth official stable release.

WARNING: This release includes a stronger authentication process for incoming messages which is backward incompatible. If you are using this feature, make sure to use the HMAC method with the new key generated during the update process to authenticate your messages.

The following patches have been committed since the 1.3 release:

Bug fixes

• Public files test incorrect if similar path is not below root.

The fifth unofficial release and snapshot of current functionality for Drupal 7.

WARNING: This release includes a stronger authentication process for incoming messages which is backward incompatible. If you are using this feature, make sure to use the HMAC method with the new key generated during the update process to authenticate your messages.

The following patches have been committed since the beta2 release:

Bug fixes

• Public files test incorrect if similar path is not below root.