Released 2019-09-25

Security release for 2.22.x series.

  • 0026110: [administration] [Show content] for Complex Configuration option doesn't work when mod_rewrite is disabled (dregad)
  • 0026091: [security] CVE-2019-15715: [Admin Required - Post Authentication] Command Execution / Injection Vulnerability (atrol)
  • 0026160: [security] Update bundled Bootstrap to 3.4.1 (CVE-2019-8331) (dregad)
  • 0026168: [security] Enable integrity hashes for CSS ressources from CDNs (dregad)
4 issues View Issues