Fix incorrect path setting when uploading files Prevent potential XXE vulnerability in modRestService Fix assorted stored XSS issues in the manager Prevent limited manager users from interacting with files in any media source Fix XSS in resource group name at TV > Access Permissions Add `upload_check_exists` system setting Fix JS TypeError if image/file TV fails validation Avoid returning resource_groups on resource save Only log session info if session is initialized
Hide Update User Group button on Users tab when editing User Group Fix alias_visible/syncsite checkboxes when switching templates Fix missing package signature when uninstalling Fix Plugin and Template name validation Improve removal of nested MODX tag content in sanitizeRequest Change modSessionHandler->gc() to return number of removed sessions Improve the processor permission response error message Fix bug with special chars in directory or file names
Update url in system setting base_help_url Improve the lexicon entry for mail_smtp_prefix Remove unnecessary type="text/javascript" Add missing password validation characters to lexicon Prevent XSSI access to `nfig` by requiring auth token Restrict file management to allowed file types Fix invalid getOption call in modResource->filterPathSegment Strip base_url only from beginning of relative url Support SameSite attribute in session cookies Restrict static resources to predefined path Add permissions to enforce access to specific resource types Flatten nested lexicon parameters by dot notation Exclude sensitive config values from placeholders Reduce log_level to WARN on cache errors Pass auth token to Browser controller config (#15692) Fix PHP 8 warnings in modPhpThumb (#15705) Fix PHP 8 compatibility with phpThumb (#15706) Return content from non-binary static resources (#15702) Fix filesize() calculation for static resources (#15697) Adjust filtering of placeholders and accessible options for (#15714) Avoid setting headers for modStaticResource when returning content (#15715)
Patch MagpieRSS for basic use in PHP 8 (#15721) XSS issues reported by Solar Security (#15720) The most current release is usually theĭevelopment release, and is only shown to give an idea of what's currently in the pipeline. This file shows the changes in recent releases of MODX.
0 kommentar(er)
