Elgg 4.3.10 and 5.1.1 - Security update

A new version for Elgg 4.3 and 5.1 is now available in the download section.

This release includes several security fixes. It's recommended to update as soon as possible.

Release notes 4.3.10:

Contributors

  • Jerôme Bakker (2)

Bug Fixes

  • session: correctly invalidate session on privilege elevation (6357da49)

Release notes 5.1.1:

Contributors

  • Jerôme Bakker (9)
  • Jeroen Dalsem (5)

Bug fixes

  • webservices: no longer expose parts of the system during an error a0db26a40
  • cli: provide readable feedback when using incorrect cron interval c658dd2b7
  • pages: don't allow a page to be its own parent f029d1e69
  • views: don't output a summary title if no display name 385475469
  • css: improved elgg-level behaviour on limited viewports a1482000f
  • routes: correctly deprecate the comment/edit route 04bed5687