New and changed features that have not yet been released
JForum is in constant development and improvement, and we always try to ship the best code possible. If you want to make use of the features listed on this page, you will have to get the source code and build the war file yourself.
New Features and fixes
- During password recovery, JForum no longer says whether the account exists or not; this is in line with current security practices.
- Fixed some potential XSS vulnerabilities (which would have been hard to exploit in practice)
Libraries
- update C3P0 from 0.9.5.5 to 0.10.0
- update Apache Commons IO from 2.13.0. to 2.15.1
- update Apache Commons Lang3 from 3.12.0. to 3.14.0
- update Apache Commons Text from 1.10.0. to 1.11.0
- update Apache log4j from 2.20.0 to 2.23.1
- update Apache Lucene from 8.11.2 to 8.11.3
- update Apache PDFBox from 3.0.0. to 3.0.2
- update MySql JDBC driver from 8.1.0 to 8.3.0
- update PostgreSQL JDBC driver from 42.6.0 to 42.7.2
- update Oracle JDBC driver from 21.11.0.0 to 23.3.0.23.09
- update Microsoft JDBC driver from 12.4.1.jre8 to 12.6.1.jre8
- update jsoup from 1.16.1 to 1.17.2
- update slf4j from 2.0.9 to 2.0.12
New Configurations
Entry name |
Default value |
Description |
|
|
|
Database Schema