[Security] Refinery CMS 3.0.2 Released
2 minutes and 0 seconds read.
Refinery CMS 3.0.2 is a maintenance and security release of the Refinery CMS 3 series. You can read the changelog which has GitHub ticket numbers assigned for each entry in case you want to dive deeper.
This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcement:
- CSRF vulnerability found by Shravan Kumar in User authentication
- Multiple XSS vulnerabilities found by Shravan Kumar
What's new?
- Added line numbers to stack trace. Thanks Jared Beck
- Add icon to image picker warning. Thanks Anita Graham
- Now use font-awesome from font-awesome-sass gem. Thanks Oleg German
- Now welcome to Ruby 2.3.0. Thanks Philip Arndt
- Add TranslatedFieldPresenter. Thanks Glenn Hoppe
What's next
- We have started to work on the Rails 5 support of Refinery CMS, you can help us to complete it by testing and debugging the pull request #3122 on Github.
- We have updated the official demo, you can now test all our officials extensions on it : Try the demo