Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.Notifications to upgrade the quicktabs module based on a security risk.
After the upgrade to quicktabs, there are errors in the display.
See attached files.
On the main group page, all posts are displayed.
However, when you use the quicktabs to display Posts, Wikis, etc - all of the content disappears.
| Comment | File | Size | Author |
|---|---|---|---|
| two.png | 11.04 KB | davidhunter | |
| one.png | 73.18 KB | davidhunter |
Comments
Comment #1
ezra-g commentedCommons is running QuickTabs with a hash of 89f7fd0b7313782d0f7504996daa36bde798ec79, which predates the QuickTabs security advisory at https://drupal.org/node/2103187. However, please note that the issue in that advisory isn't applicable to a default configuration of Commons: We don't rely on QuickTabs block access checking.
However, we should be able to safely move to the latest QuickTabs release, so leaving this issue open and adding to the 3.4 radar.
Comment #2
davidhunter commentedThanks for the "quick" reply Ezra.
I'll roll it back.
Comment #3
ezra-g commentedComment #4
ezra-g commentedLooks like this was introduced with http://drupalcode.org/project/quicktabs.git/blobdiff/88d0ba4d7d6715e7bf5... .
Comment #5
ezra-g commentedI'm going to be afk for a few hours.
Comment #6
japerryComment #7
japerryActually, after lots of cache clearing and testing, its actually this one:
http://drupalcode.org/project/quicktabs.git/commitdiff/f8b6611a6ecadab96...
Comment #8
japerryUgh. cache clearing sucks. now I think its..
http://drupalcode.org/project/quicktabs.git/commitdiff/88d0ba4d7d6715e7b...
Comment #9
japerryAdded a patch that will revert the JS bug that apparently fixed tabs for IE7 users. Oh well. =P
http://drupalcode.org/project/commons.git/commit/c5ee1a6