Loading...
 

ReleaseNotes177

Tiki 1.7.7 is available since 2004-05-16.


1.7.7 backports some security problems addressed in Tikiwiki 1.8.2, mainly Path Disclosure, XSS and improved CSRF routines (thanks to http://gulftech.org). It is offered for Eta Carinae Tikis that don't want to go to Polaris.

Damian Parker was the coordinator of this release.

Some links for more information about this release

Upgrade instructions

Those on ReleaseNotes181 are the best available.

Changes since 1.7.6

Bugs known to have been introduced

Security improvements

  • Creation of index.php to prevent directory listing
  • All libraries protect against being called directly
  • var check cleaning

Other changes

Why Register?

Register at tiki.org and you'll be able to use the account at any *.tiki.org site, thanks to the InterTiki feature. A valid email address is required to receive site notifications and occasional newsletters. You can opt out of these items at any time.