| Claroline 1.8.12 Security Update Released |
|
A security update for Claroline 1.8 has been released that fixed a SQL injection vulnerability and a Cross-site Scripting vulnerability detected by Gerendi Sandor Attila. Claroline 1.8.12 also contains a updated Simplified Chinese translation provided by Derek Zhou and fixes some bugs. The complete change log is available here . If your are still using Claroline 1.8 we strongly advice you to upgrade to Claroline 1.8.12 or to consider to switch to Claroline 1.9 as soon as possible. You can download Claroline 1.8.12 here (.zip file) . The Claroline Core Team wants to thank Gerendi Sandor Attila (http://gsasec.blogspot.com/) who has reported the security issues on the Claroline forum and Derek Zhou for his work on the Simplified Chinese translation. |