Keep in mind, this is only 0.10 with the necessary patches on it. A 0.11 beta is due out in the next week or two.From: Ted Kulp
To: announcements@lists.cmsmadesimple.org
Date: Thu, 1 Sep 2005 08:18:26 -0400
Subject: 0.10.1 "Willoughby" Released
0.10.1 is ready for mass consumption.
You can get the new release from the here:
http://cmsmadesimple.org/downloads/cmsm ... 0.1.tar.gz
http://cmsmadesimple.org/downloads/cmsm ... 0.10.1.zip
The MD5 sums for these files are:
5c94847dde00ff64aa7ae42a9c45a0f3 cmsmadesimple-0.10.1.tar.gz
745c7dc6cd63fb58877dc2e38cbf4261 cmsmadesimple-0.10.1.zip
This is a security release. Updating from 0.10 is HIGHLY recommended.
The ChangeLog follows below.
Bugs can be submitted to the mantis system at http://bugs.cmsmadesimple.org
Thanks,
The CMS Made Simple team
--------------------8-<-------cut-here---------8-<-----------------------
Version 0.10.1 "Willoughby" -- Wed Aug 31 2005
-----------------
* Fix for a possible php injection in admin/lang.php. Thanks
to vxsfx for finding this.
Also, this will only affect you if you have register_globals turned on in your php.ini. Unless you know an app needs to have that on, you should have it turned off anyway. It's a mechanism that just screams to be hacked into.
Thanks!