Skip to content

1.16.3
Compare
Choose a tag to compare
@kevinpapst kevinpapst released this 21 Nov 23:10
1.16.3
ff9acab
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Full Changelog

Implemented enhancements:

  • improve export filename #2958

Fixed bugs:

  • CSRF Tokens are not properly refreshed on some form submissions #2947 #2948 - thanks @tdozbun-reno
  • escape customer, project and activity name in javascript #2959
  • escape data in calendar popover #2960
  • make sure that markdown uses safe mode #2961
  • improve permission handling in invoice screen #2965

This is a security release that fixes several possible security issues. My thanks go out to @tdozbun-reno and @Asura-N and @lethanhphuc and @Haxatron for you discrete disclosure and being part of the huntr community!

Contributors

lethanhphuc, Asura-N, and 2 other contributors
Assets 2
Loading