Notes:
0.12 is mainly a bugfix and security update release. We recommend all instiki Users to upgrade! This release fixes XSS vulnerabilities, as well as other bugs and compatibility issues.
Changes:
In this version, some security holes where fixed
- An XSS vulnerability in categories
- An XSS vulnerability in <nowiki>
- fixes that Instiki allows "dangerous" operations as HTTP GETs
as well as some other small improvements.
- fixes for instiki running on mongrel
- fixes for instiki running on mongrel_cluster
We added a lot of tests, synced with Jacques Distler's version and fixed small bugs as well. A note to Mac OSX users: use the Ruby One-Click-Installer for OSX ( http://rubyosx.com ) or make sure you are not running into problems with sqlite (see http://instiki.5uper.net/instiki/show/SQLite+issues+on+OSX )
|
