Revision [2053]
This is an old revision of WikkaReleaseNotes1167 made by DarTar on 2009-09-02 01:39:35.
Wikka 1.1.6.7 Release Notes
Released on Jun 15, 2009Acknowledgments
Thanks to Ian Andolina, Sven Krewitt (Secunia), fishy.Security fixes
- Added random tokens (form IDs) to form submissions to mitigate CSRF attacks. Ticket: 154
- Added validation checks for GET params on admin pages to mitigate XSS attacks. Ticket: 879
Misc
- Shortened default timeout when Wikka server not reachable for version checks; produce a more meaningful error message. Ticket: 884
CategoryEN