BackdropCMS v1.16.4 Release Notes
Release Date: 2020-09-30 // over 3 years ago-
๐ Security release for Backdrop CMS. This release fixes 2 security vulnerabilities:
- ๐ Backdrop core - Moderately critical - Cross-site scripting - BACKDROP-SA-CORE-2020-005
- ๐ Backdrop core - Moderately critical - Cross-site scripting - BACKDROP-SA-CORE-2020-006
โก๏ธ Notes for updating
- ๐ No changes have been made to the
.htaccess
,robots.txt
or defaultsettings.php
files in this release. Updating customized versions of those files is not necessary. - The database update script does not need to be run.
๐ Changes since 1.16.3
- BACKDROP-SA-CORE-2020-005: Sanitize AJAX URLs.
- BACKDROP-SA-CORE-2020-006: Sanitize captions used within CKEditor.