Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.Downloads
Download live-6.x-1.2.tar.gztar.gz
13.52 KB
MD5: 9d68e0c9873366cef79d7789cbc5bc97
SHA-1: 686d29700763e855fd771e82bf14a6f47c774c50
SHA-256: 4a1e3d6dcb5ce7de0dc1bf6e78948219fa8f11174e63a1d17fff0f3a0eda8fae
Download live-6.x-1.2.zipzip
16.78 KB
MD5: a7a11dcc37c9197666af08b424a827cf
SHA-1: 4266adb99b9b1b745dd0398d30b02d82218e4fb9
SHA-256: 8c3d9d84b18f08c6d5ec50965dbd8468b445a4175d8ad16c88f5efbaf3712ab4
Release notes
6.x-1.1 has been skipped due to packaging issues.
Fixes SA-CONTRIB-2009-049 - Live - Privilege escalation, Impersonation. Also fixes a CSRF issue that only existed in 6.x-1.x-dev.
Changes since DRUPAL-6--1-0:
- Use FILTER_FORMAT_DEFAULT for default input format.
- Use proper permission for node preview access check.
- Use check_markup after validating token.
- Remove unnecessary commented code.
- Fixed a bug to determine comment uid correctly.
- #534840 by Dave Reid, Gurpartap Singh: Editing a comment from another user doesn't show the correct username in the comment preview.
- #285287 by frjo: User changes to Author for Node Preview
- #205837 - A comprehensive README file.
- #328355 - by swentel - $format not handled correctly in node preview.
Created by: Gurpartap Singh
Created on: 29 Jul 2009 at 21:42 UTC
Last updated: 29 Jul 2009 at 21:59 UTC
Created on: 29 Jul 2009 at 21:42 UTC
Last updated: 29 Jul 2009 at 21:59 UTC
Security update
Bug fixes
