RubyForge: chameleon-0.6.1.1--beta--released

Posted By: JW
Date: 2007-10-20 16:22
Summary: Chameleon 0.6.1.1 (Beta) released
Project: Chameleon

Chameleon 0.6.1.1 has been released.

Version 0.6.1.1 is a bugfix release. This small release fixes only one bug, but a severe one. In Chameleon 0.5.5, 0.6.0 and 0.6.1, it was possible for a malicious user to obtain data from the database by loading a specially crafted URL. On some databases, particularly on Microsoft SQL Server, it is possible a user even might be able to edit and delete data. Therefore, it is recommended to upgrade as soon as possible.

You can download Chameleon 0.6.1.1 (Beta) at http://chameleon.wikidot.com/download, and follow the instructions in the README included in the package to install it. To upgrade, simply copy the new files over the old ones. Only the file app/controllers/blog_controller.rb changed, so replacing that one is enough.
These instructions and a lot more information are also available on the website, at http://chameleon.wikidot.com.

Latest News

icalendar 1.4.0 Released Ryan Ahearn - 2013-05-21 23:17 (0 Comment) [Read More/Comment(0)] BinData 1.5.0 - source moved to github Dion Mendel - 2013-05-21 11:10 (0 Comment) [Read More/Comment(0)] v13.5.0 Released !! id 774 - 2013-05-18 12:28 (0 Comment) [Read More/Comment(0)] Runt v0.9.0 Released Matthew Lipper - 2013-05-17 00:11 (0 Comment) [Read More/Comment(0)] kramdown 1.0.2 released Thomas Leitner - 2013-05-09 06:58 (0 Comment) [Read More/Comment(0)] [News archive]

Forums | Admin

Discussion Forums: chameleon-0.6.1.1--beta--released

Start New Thread

Topic	Topic Starter	Replies	Last Post