• Back to project

All releases tagged Major security fixes

• 
• 1.4.5

• 
•  13 Oct 2012 15:06
• 

• Stable
• Major security fixes

Release Notes: This release has fixes for several important security bugs.

• 
• 1.5.2

• 
•  01 Aug 2012 20:43
• 

• Major security fixes

Release Notes: This release has fixes for multiple Cross-site Scripting vulnerabilities, has a fix for a MySQL upgrade issue, and migrates the BrowserID URL to persona.

• 
• 1.4.3

• 
•  01 Aug 2012 20:43
• 

• Major security fixes

Release Notes: This release has fixes for multiple cross-site scripting vulnerabilities and a fix for the youtu.be tinyurl.

• 
• 1.4.1

• 
•  04 Nov 2011 17:39
• 

• Stable
• Major security fixes

Release Notes: This release adds important security fixes for information disclosure, privilege escalation, cross-site scripting, and cross-site request forgery bugs.

• 
• 1.3.7

• 
•  04 Nov 2011 17:39
• 

• Major security fixes
• Old Stable 1.3

Release Notes: This release adds important security fixes for information disclosure, privilege escalation, cross-site scripting, and cross-site request forgery bugs.

• 
• 1.3.6

• 
•  10 May 2011 06:35
• 

• Stable
• Major security fixes

Release Notes: Critical security fixes for information disclosure, privilege escalation, cross-site scripting, cross-site request forgery and HTTPS downgrade bugs.

• 
• 1.2.9

• 
•  10 May 2011 06:35
• 

• Major security fixes
• Old Stable 1.2

Release Notes: Critical security fixes for information disclosure, privilege escalation, cross-site scripting, cross-site request forgery, and HTTPS downgrade bugs.

• 
• 1.3.5

• 
•  29 Mar 2011 06:20
• 

• Stable
• Major security fixes

Release Notes: The bundled version of HTML Purifier was updated, fixing several security vulnerabilities.

• 
• 1.2.8

• 
•  29 Mar 2011 06:20
• 

• Major security fixes
• Old Stable 1.2

Release Notes: The bundled version of HTML Purifier was updated, fixing several security vulnerabilities.

• 
• 1.3.4

• 
•  25 Mar 2011 07:16
• 

• Stable
• Major security fixes

Release Notes: This version fixes two security bugs (an XSS and a CSRF). It also includes fixes for PHP 5.3 and Leap2A, as well as an out-of-memory error in long running cron jobs.