Skip to content

Version 3.8.2
Compare
Choose a tag to compare
@kasparsd kasparsd released this 18 Oct 12:17
3.8.2
4654c31
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This release contains an important security fix for authenticated users when viewing the Stream records.

  • Security: Ensure the value of order query parameter forwarded to the database query when viewing the Stream records in the WordPress admin is either ASC or DESC. Previously it passes the whole value of order filtered through esc_sql().
Assets 3
Loading