2 January 2025
Contao version 5.3.20 is now available.What's New in Contao 5.3.20
5.3.20
Bug Fixes
5.3.19
Bug Fixes
5.3.18
Bug Fixes
5.3.17
Bug Fixes
5.3.16
Bug Fixes
5.3.15
Security
CVE-2024-45398: Remote command execution through file uploads
CVE-2024-45612: Insert tag injection via canonical URLs
5.3.14
Bug Fixes
5.3.13
Bug Fixes
5.3.12
Bug Fixes
5.3.11
Bug Fixes
5.3.10
Bug Fixes
5.3.9
Bug Fixes
5.3.8
Bug Fixes
5.3.7
Bug Fixes
5.3.6
Bug Fixes
5.3.5
Bug Fixes
5.3.4
Security
CVE-2024-28235: Session cookie disclosure in the crawler
CVE-2024-28190: Cross site scripting in the file manager
CVE-2024-28191: Insert tag injection via the form generator
CVE-2024-28234: Insufficient BBCode sanitization
5.3.3
Bug Fixes
5.3.2
Highlights
Bug Fixes
5.3.1
Highlights
Bug Fixes