It turns out that web2project was vulnerable to a handful of select Cross Site Scripting (XSS: definition) vulnerabilities. While the attack vector was pretty specific to being an already authenticated user, it had the potential to be a major problem in a poorly configured system.
Browsing Posts tagged Development
As planned, we’ve made our latest (v1.2) quarterly release. Once again we’ve closed about 50 items consisting of numerous new features and UI improvements in addition to some needed bug fixes.
Yes, you read that correctly, we’re getting close to our v1.1 release. We’ve been working quietly behind the scenes to make a number of things happen.
You can download web2project v1.0 from SourceForge and read the web2project v1.0 Release Notes on our wiki. I’d love to dig into the notes and share some of the individual points, bugs fixed, improvements, features, etc of this release but there are just too many for a single post or even a short series. In fact, I didn’t even realize how many we were dealing with until I put together the release notes.
