Open Source Social Network (OSSN) 8.7 security update has been released
Security Update
- [B] When profile edit animation is outside of round box #2477
- [E] Refactor ossn_version_upgrade #2478
- [B] Deprecations PHP 8.4 for OSSN v8.7 #2476
- [B] Resolved a cross-site scripting (XSS) vulnerability that impacted all OSSN versions earlier than v8.7. Thanks to Kgan for reporting.
Details of the vulnerability remain undisclosed at this time, pending the assignment of a CVE as requested by the reporter. Information will be made public once the CVE is issued.
You need to update to latest version of OSSN
It is encouraging to see the XSS problem fixed promptly. Is there any need to manually clean up after updating due to the fix, or does the upgrade procedure handle the patch automatically slope, because the details of the CVE are still pending
Good to see the XSS issue addressed quickly. Since the CVE details are still pending, do we know whether the fix requires any manual cleanup after updating, or is the patch fully handled by the upgrade process?
Due to the many requests in the past for additonal features and components we have decided to develope a premium version. Features like Hashtags, Videos, Polls, Events, Stories, Link Preview, etc included in it.
$199 (Life Time)
Learn More