homebox 6.x-3.0-beta3

Git tag 6.x-3.0-beta3
Security update
Bug fixes

SA-CONTRIB-2011-044 - Homebox for Organic Groups Cross Site Scripting http://drupal.org/node/1300552

6.x-3.0-beta3 2011/10/04
o by brianV: revert #1063928 to remove 100% width columns from the maximum-height check.
o #946206 by rv0 | flecus: Fixed Changed the color of the block is not saved.
o Filter and validate homebox titles.

rate 7.x-1.2

Git tag 7.x-1.2
Security update
New features
Bug fixes
Insecure

This release fixes a cross-site scripting (XSS) issue in the AJAX callback.

The features are similar to the 6.x-1.2 release, there are no 1.0 and 1.1 releases for D7.

Changes included in this release:

  • Issue #1083250 by mauritsl: Expose tags and option value type to VotingAPI to make them visible in views integration.
  • Issue #1168034 by jack_tux, mauritsl: Add new number up / down widget
  • by mauritsl: Add update hook to set missing js attribute in rate widgets variable for fivestar widgets.
  • Issue #1059924 by mauritsl: Make content_type and content_id available in template.
  • Issue #1042756 by mauritsl: Make views integration compatible with comments
  • by mauritsl: Add display mode (full, compact etc.) for full node views, teasers and comments.
  • Issue #1086266 by dencho, mauritsl: Change menu path for voting results from node/%node/results to node/%node/rating to prevent overlap with the path
  • Issue #1003250 by pgrond, maruitsl: Check for valid input in rate_generate_widget().
  • Issue #1049496 by mauritsl: Add visible feedback for thumbs up / down widget.
  • by patrickkraaij: Updated widget templates
  • by mauritsl: Alter rate_get_results() to always select anonymous user vote directly after voting, even if anonymous window is set to 0.

rate 6.x-1.3

Git tag 6.x-1.3
Security update
New features
Bug fixes
Insecure

This release fixes a cross-site scripting (XSS) issue in the AJAX callback.

Changes included in this release:

petition_node 6.x-1.5

Git tag 6.x-1.5
Security update

SA-CONTRIB-2011-043 - Petition Node - Cross Site Scripting Fixes a cross site scripting (XSS) vulnerability that can be exploited when signing a petition.

multilink 7.x-2.7

Git tag 7.x-2.7
Security update

* First "official" D7 release, functionally equivalent to 6.x-2.7
* Thanks to MyXelf for help with testing and documentation.

SA-CONTRIB-2012-170 - MultiLink - Access Bypass

multilink 6.x-2.7

Git tag 6.x-2.7
Security update
New features
Bug fixes

Adds changes and fixes from the D7 version, including:

* MultiLink Redirect support for cached pages moved into separate module MultiLink Redirect Cached. Slight improved performance with cached pages.

* Added handling+logging of any references to missing nodes (referenced nid not found.) 'Not found' will be shown as link-title and information logged.

* MultiLink's cache will now be cleared when all caches are cleared (e.g. from Admin Menu.)

SA-CONTRIB-2012-170 - MultiLink - Access Bypass

Pages

Subscribe with RSS Subscribe to RSS - Security update