This is primarily a security update to patch a number of XSS
No changes to configs, no changes to backend. Upgrade by updating
contents of lang, include, and source directories.
+ Fixed XSS vulnerability where attachment names and types were being
displayed without filtering [0.9 branch]
+ Improved filter for HTML messages to remove potentially malicious tags
(such as script, iframe, object) and attributes (event handlers, style).
Filter can be disabled on a per-message basis. [0.9 branch]
+ Minor cleanup in DB error messages [0.9 branch]
Get latest updates about Open Source Projects, Conferences and News.