Elgg Blog: Elgg 1.7.13 released

Elgg 1.7.13 has been released to address a serious bug some users encountered when trying to upgrade to 1.7.12 and a mild security vulnerability.

The upgrade bug prevented some users from being able to run the upgrade.php script.

The security vulnerability was in the livesearch endpoint and could cause an SQL query exposure using a specially crafted URL.

In addition to these bugfixes, a few other enhancements were included in 1.7.13:

* Files that are too large to upload will be rejected with an error message by the Files plugin. Previous versions of Elgg would save these as empty files.

* The pages plugin forwards to the All Pages page when there isn't a valid page owner.

All users of Elgg 1.7 are encouraged to upgrade.

Latest comments