Elgg是一款免费开源的社交网络系统(php/mysql),以BLOG为中心实现社会网络化,一经问世,即好评如潮,更有人将其与大名鼎鼎的moodle相提并论。这个平台不仅获得了2007年最佳社会性网络开源CMS平台的荣誉,更得到了info world的最高评价。
Elgg 1.7.11 has been released with security improvements. All users are advised to upgrade immediately.
The following security enhancements were made:
* Aung Khant from the YEHG reported and helped to fix a XSS vector in the Embed plugin and an SQL exposure vector in the Search plugin.
* Lostmon Lords reported and helped to fix an SQL injection vector in the search plugin.
Tons of thanks to these two people, who have been helping us find and fix security problems for the last few releases!
1.7.11 also includes a few minor bugfixes:
* Filtering by content works again in the activity stream.
* Dragging works in IE 9 for profile widgets.