RSS

Bloggers

Brett Profitt
All posts
Twitter

Cash Costello
All posts
Twitter

Evan Winslow
All posts
Twitter

Juho Jaakkola
All posts
Twitter

Matt Beckett
All posts
Twitter

Paweł Sroka
All posts
Twitter

Steve Clay
All posts
Twitter

Search

Blog tagcloud

    Jan
    11th
    by
    Steve Clay

    Elgg 1.8.18 Released

    Elgg 1.8.18 has been released to address a bug in notifications introduced in Elgg 1.8.17.

    Upgrade Elgg to fix this problem.

    Read more

    Jan
    01st
    by
    Steve Clay

    Elgg 1.8.17 and 1.7.20 Security Releases

    Elgg 1.8.17 and 1.7.20 have been released to address a few critical security issues. Be sure to upgrade immediately to protect your sites.

    • A specially-crafted request can return the contents of sensitive files.
    • A reflected XSS attack is possible against 1.8 systems.
    • The cryptographic key used for various purposes may have been generated with weak entropy, particularly on Windows.

    ​Thanks to Mike Kasper and an anonymous contributor for reporting these vulnerabilities to us privately via security@elgg.org.

    1.8.17 also includes tons of other fixes:

    Read more

    Dec
    05th
    by
    Steve Clay

    Elgg 1.8.11 bugfix release

    Elgg 1.8.11 has been released in order to fix a bug that prevented groups from being created. Please upgrade immediately if your site relies on group functionality.

    Otherwise this release is identical to Elgg 1.8.10.