Grav 1.7.46
28 May 2024
Grav version 1.7.46 is now available.
Upgrading to Grav 1.7.46
Grav 1.7.46 can be upgraded to (or installed) using any of Installatron's products. Use Installatron's optional Automatic Update feature to automatically apply Grav updates as new versions are released, or use Installatron's Clone feature to duplicate an existing Grav install to test the 1.7.46 upgrade prior to applying it live. Get started managing your Grav installations with Installatron
What's New in Grav 1.7.46
Bug Fixes and Changes
- Better handling of external protocols in Utils::url() such as mailto:, tel:, etc.
- Handle GRAV_ROOT or GRAV_WEBROOT when / #3667
- Fixes for multi-lang taxonomy when reinitializing the languages (e.g. LangSwitcher plugin)
- Ensure the full filepath is checked for invalid filename in MediaUploadTrait::checkFileMetadata()
- Fixed a bug in the on_events REGEX pattern of Security::detectXss() as it was not matching correctly.
- Fixed an issue where read_file() Twig function could be used nefariously in content #GHSA-f8v5-jmfh-pr69