1. Forum
  3. Kunena - To Speak!
  5. Official Announcements and News about Kunena
  7. Kunena 5.0.14 Released - Security Release
×
Kunena 5.2 Beta 1 Released (24 Sep 2020)

The Kunena team is thrilled to announce the first public beta release of Kunena 5.2, a native Joomla extension for Joomla 3.9. This is a development release and should be only be used for testing; this version is not recommended for live websites at this stage.

The purpose of this release is to encourage testing by downloading, installing and identifying any problems or shortcomings that people may discover. K 5.2.0 B1 is stable and we are aware that people will discover defects. We encourage you to use the forum to report defects, as soon as they are discovered, so that the development team can work through the problems before the release of K 5.1 as a stable product. Reporting defects does not mean that the problems can or will be fixed. The Kunena team is looking forward to hearing your feedback on how well we have achieved our design goals.

Question Kunena 5.0.14 Released - Security Release

More
2 years 7 months ago - 2 years 7 months ago #1 by 810
Kunena 5.0.14 Released - Security Release was created by 810
The key distinctions of K 5.0.14 are:

XSS - High...

Introduction

The Kunena team has announce the arrival of Kunena 5.0.14 [K 5.0.14] which is now available for download as a native Joomla extension for J! 3.8.x. This version addresses most of the issues that were discovered in K 5.0 and issues discovered during the development stages of K 5.0. This is a Security release.

This will be the last K5.0.x version.

Read more...
Last edit: 2 years 7 months ago by 810.
The following user(s) said Thank You: ssnobben

Please Log in or Create an account to join the conversation.

More
2 years 7 months ago #2 by Sanity
Replied by Sanity on topic Kunena 5.0.14 Released - Security Release
Hello 810,

As the original reporter of this issue I have to tell you it has nothing to do with "XSRF".
The request requires an CSRF-Token so there is no exploiting with "XSRF".
This vulnerability should be higher categorized than "XSRF".

Best regards,
Sanity

Please Log in or Create an account to join the conversation.

More
2 years 7 months ago #3 by 810
Replied by 810 on topic Kunena 5.0.14 Released - Security Release
ok, changed.

Please Log in or Create an account to join the conversation.

More
2 years 7 months ago #4 by ruud
Replied by ruud on topic Kunena 5.0.14 Released - Security Release
download link for the language files points to the wrong package (kunena package instead of language package) :)
sharing = caring

Please Log in or Create an account to join the conversation.

More
2 years 7 months ago #5 by 810
Replied by 810 on topic Kunena 5.0.14 Released - Security Release
fixed
The following user(s) said Thank You: ruud

Please Log in or Create an account to join the conversation.

More
2 years 7 months ago #6 by NeilT
Replied by NeilT on topic Kunena 5.0.14 Released - Security Release
The update is not showing within the Joomla update notice? Is this a manual update?

Please Log in or Create an account to join the conversation.

More
2 years 7 months ago - 2 years 7 months ago #7 by rich
Replied by rich on topic Kunena 5.0.14 Released - Security Release
Should be displayed, but you can it install also via the Joomla installer.
Last edit: 2 years 7 months ago by rich.

Please Log in or Create an account to join the conversation.

More
2 years 7 months ago #8 by 810
Replied by 810 on topic Kunena 5.0.14 Released - Security Release
Its the cache of the browser, on the dashboard of joomla. Do ctrl + f5
this will recheck the updates.

Please Log in or Create an account to join the conversation.

Forum Access

  • Not Allowed: to create new topic.
  • Not Allowed: to reply.
  • Not Allowed: to edit your message.
  1. Forum
  3. Kunena - To Speak!
  5. Official Announcements and News about Kunena
  7. Kunena 5.0.14 Released - Security Release
Time to create page: 0.104 seconds