Security update

This release of Fivestar is a bug-fixing release, adding no new features. This release fixes several moderate bugs, including display of Fivestar widgets when used in AJAX situations, such as within AJAX views or with the AJAX QuickTabs. It also fixes a security issue that could possibly allow a malicious user to hijack votes of other users, causing ratings to be skewed to the malicious user's preference.

Upgrading is recommended for all users of Fivestar module. No database updates are required for this release.

This release of Fivestar is a bug-fixing release, adding no new features. This release fixes several moderate bugs, including display of Fivestar widgets when used in AJAX situations, such as within AJAX views or with the AJAX QuickTabs. It also fixes a security issue that could possibly allow a malicious user to hijack votes of other users, causing ratings to be skewed to the malicious user's preference.

Upgrading is recommended for all users of Fivestar module. No database updates are required for this release.

- Security fix for SQL injection
- added Spanish .po file
- added Aggregator dependency
- bug fix: double create content link (#175240)
- bug fix: Blog It graphics not displaying (#238063)
- bug fix: Used filter_xss() on item titles for Google Reader compatibility (#252667)
- bug fix: RSS Doctype (#240039)
- Missing argument 3 for news_page_link() (#166346)

Add support for storing EXIF data in the database to improve scalability.

This release fixes a security vulnerability. Sites are urged to upgrade immediately after reading the security announcement:

• SA-CONTRIB-2009-022 - XSS through EXIF data.

SA-CONTRIB-2009-24 Node Access User Reference - Anonymous access

SA-CONTRIB-2009-24 Node Access User Reference - Anonymous access