3.34 (2007.01.16) (Movable Type Documentation)

3.34 (2007.01.16)

Show

46404: Upgrade MT::Bootstap for FastCGI

FEATURE: MT is easier to configure to run under Apache mod_fastcgi or mod_fcgid.

46226: XSS exploit: complex script tags may run in IE6

SECURITY: Specific malformed tags could be used to invoke cross-site scripting attacks for certain browsers. This vulerability has been closed.

46227: Sanitization needed in MTCommentPreviewIsStatic

SECURITY: In previous versions of Movable Type, using MTCommentPreviewIsStatic template tag could be exploited to run script on web browsers. This vulnerability has been closed.

45890: Default sanitize of comment and trackbacks disabled when Nofollow plugin is disabled

FIXED: Comment and ping tags were not properly filtered using 'sanitize' rules when nofollow plugin was disabled or uninstalled.

46208: Custom rebuild option names omitted

DEVELOPER: Fixed a bug that omitted the names of custom rebuild options from the rebuild site popup window.

35604: version_limit in plugin upgrade function misbehaving

DEVELOPER: Fixed an issue regarding plugin upgrade functions not firing consistently.

46392: Nofollow configuration setting should say "trusted commenters"

FIXED: Nofollow configuration setting now says, "trusted commenters" instead of "authenticated commenters".

Submit Feedback on This Article

Your comments on how we can improve this article are appreciated; but please do not use the feedback form to submit support requests or question. We will not respond to or publish such queries submitted through this form. If you have a technical question or problem, visit Movable Type Support.

Name:

Email Address:

URL:

Remember personal info?

Comments: (you may use HTML tags for style)

Comments will be moderated and may appear on this page or be incorporated into future versions of this document. For full details, see our Terms of Use.

Chapter H: Changelog