Version 9.2.1
over 4 years ago by Joe Nisha Arvind
Fixed
- Security Vulnerability issues listed below have been resolved
- Vulnerability #1: CVE-2020-10131 Stored Cross-site Scripting – Username Field
- Vulnerability #2: CVE-2020-10128 CSV Excel Macro Injection in Collection
- Vulnerability #3: CVE-2020-10128 CSV Excel Macro Injection in Featured Result
- Vulnerability #4: Apache Zookeeper Common/Default Nodes Accessible Without ACL
- Featured result expiry date mismatch issue