|
|
|
Posted
almost 5 years
ago
by
John Messingham
Mambo 4.6.5, codename Jupiter , has been released. This is a maintenance and security release which fixes some potentially serious security vulnerabilities affecting all earlier versions of 4.6. It is recommended that all 4.6 users update to 4.6.5
... [More]
as soon as possible. Instructions for upgrading are included in the release, which you can download from the Mambo Code Forge here. (http://mambo-code.org/gf/project/mambo/frs/)
What's Changed?
Hardened security in /includes/Cache/Lite/Output.php (thanks go to ZonaNet for reporting this issue);
Fixed includes/core.classes.php - local file include vulnerability (thanks to George from tenablesecurity.com);
Additional security hardening:
A number of bug fixes. [Less]
|
|
Posted
almost 5 years
ago
by
Nicolas Steenhout
Mambo Foundation, Inc President, Lynne Pope, is a finalist in the inaugural New Zealand Open Source Awards. Selected as one of three finalists for the title of New Zealand's Open Source Ambassador from 130 nominations, Lynne Pope has been
... [More]
nominated for her involvement with the content-management system Mambo, and for setting up a website, Katrina Evacuee Help Centre, at www.disastersearch.org (http://disastersearch.org), to assist victims of the 2005 Hurricane Katrina disaster. Disastersearch, which was formerly named the Katrina Evacuee Help Centre, was built on a base of Mambo 4.5.2 and through the efforts of a large number of volunteer programmers from the Mambo and Joomla! communities evolved to become an application that can be used in any emergency involving the evacuation and relocation of people. It is an ongoing project and continues development under the leadership of both Lynne and her fellow director of Disastersearch Ltd, Dr John Long. John and Lynne are also members of the Mambo core development team. The New Zealand Open Source Awards recognise and promote: * the contributions of New Zealanders directly to open source projects or the promotion of open source generally * exemplary use of open source by New Zealand organisations.Sponsored by Google, Red Hat, Novell, Catalyst IT and a number of local New Zealand organisations, the awards will be presented at a gala function in Wellington, NZ on October 17th, 2007. http://www.nzosa.org.nz/news (http://www.nzosa.org.nz/news) [Less]
|
|
Posted
almost 5 years
ago
by
Nicolas Steenhout
Team Mambo announces the release of Mambo 4.6.3! Code name Dylan , this minor version release features a number of security improvements and bug fixes. These include: Stability security improvements Performance
... [More]
improvements
A number of bug fixes
Improved compatibility with 3rd party extensions
Updates to some core extensions
What's New in 4.6.3...
Security Fixes:
*php mailer security fix.
*template chooser security fixes
*XSS fixes in administrator backed
*sample configuration file renamed to configuration.sample.php [Less]
|
|
Posted
almost 5 years
ago
by
Nicolas Steenhout
The Mambo Team announces the final release of the Mambo 4.5.x series of releases. This marks the end of an era for one of the web's most popular Free Open Source Software (FOSS) Content Management Systems (CMS). The enormous success of Mambo 4.5.x
... [More]
led to many forks, some successful, some less so. Mambo 4.5 has been a great CMS, a good framework, and a great school to many of us , says Ozgur Cem Sen, Core Team Leader of Mambo.
We have been overwhelmed with the positive feedback we've received for the Mambo 4.6.x series, initially released over 16 months ago , continues Mr. Sen. We encourage all Mambo users to upgrade to the latest stable release of Mambo 4.6.
During the last several months, the Mambo Team has been working very hard on the upcoming Mambo 4.7, as well as maintaining and doing minor development on Mambo 4.6.x. The Mambo Team also has been discussing Mambo 5. It is time to look forward, and focus our efforts towards growth , says Nicolas Steenhout, Secretary of the Mambo Foundation, Inc.
Project Leader, Chad Auld says that this is both a sad and an exciting time for Mambo. It is always sad to see software reaching the end of development, Chad says, Mambo 4.5 has been with us for many years . He adds, Mambo 4.5's time has passed and Mambo is moving forward to an even better future. With 4.7 getting closer to release and planning under way for Mambo 5.0, we have exciting things coming.
Team Mambo supports those sentiments and wishes to thank everyone who contributed to Mambo 4.5. This is an exciting step forward for Mambo and one which the Team hopes will be supported by the community. [Less]
|
|
Posted
almost 5 years
ago
by
Nicolas Steenhout
This release includes bug fixes and a TinyMCE core upgrade. There was a bug with the new dynamic image list which broke recursion and also a bug with the file manager url which caused 404 errors when users called the file manager from the frontend
... [More]
with IE. Both have now been corrected. The MOStlyCE core is now running TinyMCE v3.0.5 (up from 3.0) which includes quite a few bug fixes as well. Their full changelog can be see here - http://tinymce.moxiecode.com/tinymce/changelog.txt (http://tinymce.moxiecode.com/tinymce/changelog.txt).
Version 2.x of MOStlyCE is now deprecated and version 3 is now recommended for all Mambo 4.6 users. [Less]
|
|
Posted
almost 5 years
ago
by
Nicolas Steenhout
Team Mambo has released 4.6.4, codename Sunrise , as a maintenance and security release. Mambo 4.6.4 fixes some serious security vulnerabilities affecting all earlier versions of 4.6. It is recommended that all 4.6 users update to 4.6.4 as soon as
... [More]
possible. Instructions for upgrading are included in the release, which you can download from the Mambo Code Forge here. (http://mambo-code.org/gf/project/mambo/frs/)
Please see the Security Forum for details (http://forum.mambo-foundation.org/forumdisplay.php?f=44) of these security issues.
This release also fixes some bugs found in 4.6.3 and contains performance enhancements, along with enhancements to the Language Manager and a number of core extensions.
Known Issues:
There is an outstanding issue with base href. To temporarily work around this problem, should your site experience problems with it, please edit your template's index.php code like this:Find this code within the
<head></head> tags<?php mosShowHead(); ?>
Replace it with this:
<?php mosShowHead('','base'); ?>
This will prevent base href from being generated by Mambo. You may need to then manually enter a base href tag to enable correct linking to relative links within your site when you have SEF enabled. If you experience any problems with this workaround please seek help on the forums (http://forum.mambo-foundation.org/).
This issue is being worked on by the Team and a fix will be available soon. Due to the severity of the security vulnerabilities that were identified Mambo 4.6.4 had to be released urgently and could not be delayed while the base href bug was fixed. [Less]
|
|
Posted
about 5 years
ago
by
Nicolas Steenhout
Team Mambo announces the release of Mambo 4.6.3! Code name Dylan , this minor version release features a number of security improvements and bug fixes. These include: Stability security improvements Performance
... [More]
improvements
A number of bug fixes
Improved compatibility with 3rd party extensions
Updates to some core extensions
What's New in 4.6.3...
Security Fixes:
*php mailer security fix.
*template chooser security fixes
*XSS fixes in administrator backed
*sample configuration file renamed to configuration.sample.php [Less]
|
|
Posted
about 5 years
ago
by
Nicolas Steenhout
The Mambo Team announces the final release of the Mambo 4.5.x series of releases. This marks the end of an era for one of the web's most popular Free Open Source Software (FOSS) Content Management Systems (CMS). The enormous success of Mambo 4.5.x
... [More]
led to many forks, some successful, some less so. Mambo 4.5 has been a great CMS, a good framework, and a great school to many of us , says Ozgur Cem Sen, Core Team Leader of Mambo.
We have been overwhelmed with the positive feedback we've received for the Mambo 4.6.x series, initially released over 16 months ago , continues Mr. Sen. We encourage all Mambo users to upgrade to the latest stable release of Mambo 4.6.
During the last several months, the Mambo Team has been working very hard on the upcoming Mambo 4.7, as well as maintaining and doing minor development on Mambo 4.6.x. The Mambo Team also has been discussing Mambo 5. It is time to look forward, and focus our efforts towards growth , says Nicolas Steenhout, Secretary of the Mambo Foundation, Inc.
Project Leader, Chad Auld says that this is both a sad and an exciting time for Mambo. It is always sad to see software reaching the end of development, Chad says, Mambo 4.5 has been with us for many years . He adds, Mambo 4.5's time has passed and Mambo is moving forward to an even better future. With 4.7 getting closer to release and planning under way for Mambo 5.0, we have exciting things coming.
Team Mambo supports those sentiments and wishes to thank everyone who contributed to Mambo 4.5. This is an exciting step forward for Mambo and one which the Team hopes will be supported by the community. [Less]
|
|
Posted
about 5 years
ago
by
Nicolas Steenhout
This release includes bug fixes and a TinyMCE core upgrade. There was a bug with the new dynamic image list which broke recursion and also a bug with the file manager url which caused 404 errors when users called the file manager from the frontend
... [More]
with IE. Both have now been corrected. The MOStlyCE core is now running TinyMCE v3.0.5 (up from 3.0) which includes quite a few bug fixes as well. Their full changelog can be see here - http://tinymce.moxiecode.com/tinymce/changelog.txt (http://tinymce.moxiecode.com/tinymce/changelog.txt).
Version 2.x of MOStlyCE is now deprecated and version 3 is now recommended for all Mambo 4.6 users. [Less]
|
|
Posted
about 5 years
ago
by
Nicolas Steenhout
Team Mambo has released 4.6.4, codename Sunrise , as a maintenance and security release. Mambo 4.6.4 fixes some serious security vulnerabilities affecting all earlier versions of 4.6. It is recommended that all 4.6 users update to 4.6.4 as soon as
... [More]
possible. Instructions for upgrading are included in the release, which you can download from the Mambo Code Forge here. (http://mambo-code.org/gf/project/mambo/frs/)
Please see the Security Forum for details (http://forum.mambo-foundation.org/forumdisplay.php?f=44) of these security issues.
This release also fixes some bugs found in 4.6.3 and contains performance enhancements, along with enhancements to the Language Manager and a number of core extensions.
Known Issues:
There is an outstanding issue with base href. To temporarily work around this problem, should your site experience problems with it, please edit your template's index.php code like this:Find this code within the
<head></head> tags<?php mosShowHead(); ?>
Replace it with this:
<?php mosShowHead('','base'); ?>
This will prevent base href from being generated by Mambo. You may need to then manually enter a base href tag to enable correct linking to relative links within your site when you have SEF enabled. If you experience any problems with this workaround please seek help on the forums (http://forum.mambo-foundation.org/).
This issue is being worked on by the Team and a fix will be available soon. Due to the severity of the security vulnerabilities that were identified Mambo 4.6.4 had to be released urgently and could not be delayed while the base href bug was fixed. [Less]
|
Copyright
©
2013
Black Duck Software, Inc.
and its contributors, Some Rights Reserved. Unless otherwise marked, this work is licensed under a
Creative Commons Attribution 3.0 Unported License
. Ohloh
®
and the Ohloh logo are trademarks of
Black Duck Software, Inc.
in the United States and/or other jurisdictions. All other trademarks are the property of their respective holders.