Skip to content

v7.2.8
Compare
Choose a tag to compare
@guustnieuwenhuis guustnieuwenhuis released this 07 Mar 13:09
· 1160 commits to main since this release
7.2.8
98222fa
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Security Vulnerability Fix

What was the issue ?

We've been informed about multiple high and critical vulnerabilities in Masa CMS.

What is fixed ?

  • The mentioned vulnerabilities have been fixed.

What versions are affected?

Masa CMS versions 7.2, 7.3 and 7.4 are affected.

What should you upgrade ?

  • If you’re on Masa CMS 7.4, you should update to version 7.4.6 immediately. This can be done by using the “Update Masa CMS Core” option in the menu of the Masa CMS Administrator or by applying a manual update.
  • If you’re on Masa CMS 7.3, you should update to version 7.3.13 immediately. This can be done by applying a manual update.
  • If you’re on Masa CMS 7.2, you should update to version 7.2.8 immediately. This can be done by applying a manual update.

What's Changed

  • Disable enableMuraTag, enableDynamicContent and sharableRemoteSessions by default
  • Additional security improvements have been made

Full Changelog: 7.2.7...7.2.8

Assets 2