News items tagged with "patch"

Patch #1 Released for V2.4.2

January 21, 2018 Tags: patch, release, bugs

This patch addresses a fatal error found in Exponent CMS v2.4.1 which prevented sending email on non-windows systems running PHP v7.0 or newer, or any system running PHP v7.0 or newer and using the php  simple mail option which is now deprecated due to security concerns. It is recommended that users re-configure their site to use SMTP mailing instead of the simple mail option under Site Configuration, or they ensure their system supports a call to '/usr/sbin/sendmail' which is the replacement for php simple mail when running on PHP v 7.0 or newer. We strongly encourage all Exponent installations be upgraded to v2.4.2 with this patch as soon as practical! Patch #1 to v2.4.2 is found at 
  (read more)

Patch #1 Released for V2.3.9

September 13, 2016 Tags: patch, release, bugs

This patch fixes several issues in the v2.3.9 release. It also provides several tweaks and new features including a 'fill screen' feature for the elFinder file manager, though the main focus is providing several security fixes.  Patch #1 to v2.3.9 is found at (read more)

Updated Patches released for v2.1.4 and v2.2.3

August 28, 2016 Tags: patch, release, bugs

Though they are both extremely old versions, they were the release before a major version change and are/may still be in use. Please bear in mind we strongly recommend your installations be updated to a much newer version which contains many more fixes and new features. Having said that, these patches (v2.1.4patch9 and v2.2.3patch12) fix a security vulnerability reported by Balisong which might allow uploaded scripts to be executed. (read more)

Security Vulnerability - All Exponent Versions - August 2016

August 28, 2016 Tags: patch, security

There is a security vulnerability in Exponent 2.x found on August 26, 2016 reported by Balisong which could allow uploaded scripts to be executed.  It has been present in all versions of Exponent (2.x). The fix is: (read more)