All releases tagged Security Enhancements
Release Notes: This release fixes a number of bugs and has some incremental enhancements. Most importantly, it incorporates a fix for the security issue CVE-2013-1751, where the MAKETEXT variable allowed arbitrary shell command execution using the tilde (~) character. This is a followup to the CVE issued in December.
Release Notes: This release fixes a number of bugs and has some incremental enhancements. Most importantly, it incorporates a fix for the security issue CVE-2012-6329, where the MAKETEXT variable allowed arbitrary shell command execution.
Release Notes: This patch release fixes a CSRF vulnerability with the image tag, changes TWiki to use ISO date format by default, and fixes a number of bugs.
Release Notes: This release includes enhanced security, search, and enterprise collaboration capabilities. The new security enhancement provides added protection against malicious attacks that exploit inherent vulnerabilities in cross-site scripting. Enhanced search capabilities enable TWiki users to perform advanced searching, including adding footer parameter and topics to formatted searches. Enhanced enterprise collaboration capabilities provide added newsfeeds to TWiki topics as well as flexible corporate look-and-feel options using built-in TWiki Skin plug-ins.
