SilverStripe 3.1.4
8 April 2014
SilverStripe version 3.1.4 is now available (security release).
Upgrading to SilverStripe 3.1.4
SilverStripe 3.1.4 can be upgraded to (or installed) using any of Installatron's products. Use Installatron's optional Automatic Update feature to automatically apply SilverStripe updates as new versions are released, or use Installatron's Clone feature to duplicate an existing SilverStripe install to test the 3.1.4 upgrade prior to applying it live. Get started managing your SilverStripe installations with Installatron
What's New in SilverStripe 3.1.4
Security
- Fix issue with versioned dataobjects being cached between stages - See announcement SS-2014-007
- Fix encoding of JS redirection script - See announcement SS-2014-006
- Amends solution to SS-2014-006
- Prevent SQLi when no URL filters are applied - See announcement SS-2014-004
- Do now allow arbitary class creation in CMS - See announcement SS-2014-005
Bugfixes
- Versioned::augmentSQL() when the data query was null.
- UploadField validation error and styles
- Overriding of theme templates in project folder
- Ensure TreeMultiSelectField doesn't populate menus with "unchanged".
- #2503 Fixes performReadonlyTransformation for OptionSetField
- Rewrite Member getCMSFields to ensure updateCMSFields is only run once
- Ensure valid CSS classes for GridField header
- Fix case where setFolder('/') would break UploadField::fileexists
- Prevent unnecessary reconstruction of ClassName field after default records are generated
- Fix DataObject::loadLazyFields discarding original query parameters
- Upload: retrieve existing File if an object without an ID is given and replaceFile=true
- Fix Date and SS_DateTime::FormatFromSettings
API
- Add support for many_many_extraField in YAML
- Allow vetoing forgot password requests
General
- Rewrote usages of error suppression operator