Hello. PmWiki version 2.2.133 was published today, and is available at:
http://www.pmwiki.org/pub/pmwiki/pmwiki-2.2.133.tgz http://www.pmwiki.org/pub/pmwiki/pmwiki-2.2.133.zip svn://www.pmwiki.org/pmwiki/tags/latest This version fixes a potential vulnerability to CWE-384: Session Fixation, reported by Dominique Faure. The fix regenerates the session identifier at the moment a password is submitted. In case this is not desirable, a wiki admin can set the new variable $EnableAuthPostRegenerateSID to false. This version also fixes an unintended variable evaluation in link markups. The CSS from Cookbook:RecipeCheck will now be injected only when needed. The responsive skin styles contained a reduced padding value for numbered and bulleted lists in order to save space, but in longer lists it could clip the item numbers. This value was removed from the styles because it was complex to reliably override it from local configuration. If you need to enable the previous values, add to pub/css/local.css the following: ul, ol { padding: 0 0 0 20px; } @media screen and (min-width:50em) { ul, ol { padding: 0 0 0 40px; } } Thanks, Petko -- If you upgrade : http://www.pmwiki.org/Upgrades _______________________________________________ pmwiki-users mailing list pmwiki-users@pmichaud.com http://www.pmichaud.com/mailman/listinfo/pmwiki-users
