Release 3.3.13

@tablatronix tablatronix released this Oct 10, 2016

  • #1194 thumbnail creation Bug -oleg06

Downloads

Release 3.3.12

@tablatronix tablatronix released this Sep 17, 2016 · 2 commits to hotfixes since this release

#1191 settings not showing permalink properly CRITICAL

Downloads

Release 3.3.11

@tablatronix tablatronix released this Aug 10, 2016 · 6 commits to stable since this release

#1177 Getsimple CMS <= 3.3.10 Arbitrary File Upload Vulnerability - s0nk3y
#1159 Built-in transliteration Feature
#1181 no default font color

Downloads

Release 3.3.10

@tablatronix tablatronix released this Jun 6, 2016 · 17 commits to stable since this release

#1147 settings password form fill annoyance Bug
#1145 utf-8 all xml headers Bug
#1144 FILTER_SANITIZE_FULL_SPECIAL_CHARS not supported php 5.2 Bug
#1143 Duplicate id #sitename on settings Bug
#1120 Core Data Files can not be used as custom data storage Feature
#1149 disable chmods GSDOCHMOD
#1136 Preserve case in uploads define('GSUPLOADSLC',false)
#1155 update cke 4.5.9 - ckeditor cache problem
#1161 ckeditor plugins and disable autogrow

Downloads

Release v3.3.9

@tablatronix tablatronix released this Apr 19, 2016 · 42 commits to stable since this release

#1137 update ckeditor to latest (4.5.7), adds codesnippet and autogrow plugins also

Downloads

Release 3.3.8

@tablatronix tablatronix released this Jan 29, 2016 · 100 commits to stable since this release

#1130 theme.php persistent xss injection SECURITY
#1127 theme.php POST template persistent xss SECURITY
#1111 page delete never fails on error
#1103 Reflected XSS - Uploads section SECURITY
#1131 Function createBak in 3.3.x always return false

Downloads

Release 3.3.7

@tablatronix tablatronix released this Aug 22, 2015 · 112 commits to stable since this release

FIX #1077 upload protection breaks on apache 1.3
FIX #1074 Stored XSS in the USER profile SECURITY
FIX #1071 disabled select text color
FIX #1067 Persistant/Stored XSS while creating page and also in backups SECURITY
FIX #1065 uploadifybutton not themed
FIX #1078 plugin api checks can crash plugins.php added GSNOPLUGINCHECK
FIX #1081 x-frame can break stuff
NEW #1089 format xml files

Downloads

GetSimple Release 3.3.6

@tablatronix tablatronix released this Jun 28, 2015 · 130 commits to stable since this release

FIX #1029 page save never fails
FIX #1028 gsnoframe applies to front end
FIX #1048 definition check issues
FIX #1043 install apache error is misleading
FIX #1049 cke sperators are not visible
FIX #1060 file upload security bypass, using whitelist and mime checking SECURITY
FIX #1059 filebrowser arbitrary js injection SECURITY
FIX #1058 thumb.php security bypass copy/move files SECURITY
FIX #1057 theme-edit directory traversal SECURITY
FIX #1050 Page 'Meta Description' contains Style/Script declarations
FIX #1046 Persistent XSS - GetSimpleCMS 3.3.5 SECURITY
NEW #1032 upload execution protection
NEW #1042 new blacklist extensions
NEW #1044 ckeditor keep some empty tags
NEW #1051 strip shortcodes
FIX #1064 plugins table has no highlight

Ensure uploads still work

Downloads

GetSimpleCMS v3.3.5

@tablatronix tablatronix released this Feb 4, 2015 · 180 commits to hotfixes since this release

FIX: #974 files does not show permissions on windows
FIX: #973 image.php dir traversal SECURITY
FIX: #972 log.php xss SECURITY
FIX: #971 prevent backend in frames x-frame policy SECURITY
FIX: #970 better cookie security SECURITY
FIX: #969 backup-edit traversal SECURITY
FIX: #966 Security vulns SECURITY
FIX: #965 corrupt page fatal error
FIX: #948 Fatal Error => zip-Backup
FIX: #945 placeholder confusion
FIX: #944 XML External Entity (XXE) Vulnerability in admin/api.php SECURITY
FIX: #979 some debug info when uploading image
FIX: #996 Reverse Proxy : url detection

Downloads

GetSimpleCMS v3.3.4

@tablatronix tablatronix released this Oct 8, 2014 · 191 commits to hotfixes since this release

#929 admin panel sidebar on Safari, weird transition
#904 new page nonindex existing-url notices
#903 fix undo for create new page
#902 Missing argument 1 for getRegexUnicode() notices

Downloads