Return to main site

Reporting

• Ruud van Melick in Weert, the Netherlands
• Robert Wetzlmayr in Lenzing, Austria

Search

Archive

RSS / Atom

Development

• 4.0.x/dev branch
• 4.1.x/crockery branch

Textpattern 4.0.5 released

After quite a while and lots of work from many, many people it’s finally here. Textpattern 4.0.5 is available as always on the download page.

We have fixed one security issue (XSS) on the public-side with comment-previews, which means that updates are strongly recommended. The relevance and potential attack vectors are described on wikipedia [type 1]. Since the authentification cookie is restricted to the admin-directory and not accessible from the front-end, in most cases this means “only” the info from the comment-data-cookie might be leaked. Users that run textpattern together with other software or third party plugins that set cookies might be at risk of having other data leaked, when a user can be tricked into following certain links.

Updates should be seamless for the vast majority of people, otherwise make sure that all plugins are also updated to their most recent version. We’ll add entries to the FAQ specifically for 4.0.5 where questions may arise. There’s also a very minor, low-impact issue for 4.0.5rc1-testers, but I’ll write more about that in the next few days, but nothing that has any impact on updating to 4.0.5 final right away.

Changes since 4.0.4:

• Fixed security issue on public-side (XSS) (thanks zarathu)
• Fixed path disclosure issue (thanks zarathu)
• Search for posted and last modifed dates in article list
• New tag: <txp:hide /> as a container for comments and other internal content
• Changed tags: <txp:comments />, <txp:category_list />, <txp:section_list /> and <txp:image_index /> support ‘sort’ attribute
• Distribute jQuery 1.1.2 as a default JavaScript library
• Keep image properties on replacement
• Add ‘delete thumbnail’ function
• Support back end branding: customizable logo and color bar
• Table sort indicators
• Textile improvements
• Fix non-utf8 mails (iso 8859-1)
• better wrapping in admin-interface to prevent horizontal scrollbar
• Add comment status to comment notification mails
• Fix “infinite” pagination in rare edge cases
• Work around apache bug for file-downloads (in connection with mod_deflate)
• Fix error messages on wrong logins for older mysql versions
• Fix comment spam blacklist false positives
• Fix file_download-tag from showing the same url for different downloads
• Fix disappearing comment preferences in certain circumstances
• Fix “active class” in section_list, category_list
• Better cooperation with some proxies (and other HTTP/1.0 clients)
• Smarter comment submit button emphasises preview step
• Optionally hide spam comments in back end list
• Truncate longish article category titles in the write screen
• Handle thumbnailing of larger images
• Better MoveableType import
• Fix some more IIS issues
• New callback event: ‘textpattern_end’
• New callback event: ‘ping’
• New tag: <txp:article_url_title />
• Changed tag: <txp:permlink /> loses default title attribute
• Changed tag: <txp:file_download_link /> returns filename as an additional URL part
• Many, many minor improvements, see svn-logs

Further reading:
FAQ-Entries specific to 4.0.5 (will be added when they arise)
Textpattern Contributors (will soon be updated to 4.0.5)
Forum-Thread for the announcement

Posted 1 July 2007, 22:54 by Sencer Yurdagül ·

Digg This

Comment

1. Tanks lot for your efforts Mary, Ruud, Wet and Sencer.

   — Pat64 · Jul 1, 11:05 PM · #

2. And not forgetting Zem. Thanks guys, you’ve changed the way I think about publishing on the web! After having tried many other content management systems I can safely say Textpattern is my absolute favourite to develop in.

   A big thank you everyone who contributed.

   — Robin · Jul 1, 11:24 PM · #

3. That’s a lot for a small point release. Thanks team!

   — Dat Nguyen · Jul 1, 11:31 PM · #

4. Excellent … thank you for the continued dedication and to making possible the ability for so many to publish online in such an elegant way!

   — Eddie · Jul 2, 12:32 AM · #

5. Excellent…TXP are keep getting better and better. It’s my choice for web development. Thanks for great team.

   — Sjarief · Jul 2, 01:09 AM · #

6. Congratulations, Textpattern team! We needed this one. ;)

   — Willie · Jul 2, 05:15 AM · #

7. Nice job folks, as always.

   — Ray · Jul 2, 06:53 AM · #

8. And somebody said there’s no development?! Crap! Thanks for the great job for everybody who contributed to this release, and thus made our lives easier!!!

   — Zoltán · Jul 2, 07:55 AM · #

9. upgraded seamlessly. thanks.

   — steve · Jul 2, 08:20 AM · #

10. Download and Used it. ;)

    — Jauhari · Jul 2, 08:32 AM · #

11. Excellent, great job, thanks!

    — Nick · Jul 2, 10:34 AM · #

12. Well done!

    — Sven · Jul 2, 11:40 AM · #

13. Finally an upgrade. Many thanks!

    — embuck · Jul 2, 12:34 PM · #

14. woohoo! thanks! congrats!

    — Finnish · Jul 2, 02:48 PM · #

15. Like everybody already said: thank you very much! I admire your work, and hope you continue improving it!

    — Christian Sandberg · Jul 2, 04:54 PM · #

16. Thanks people!

    <3 TXP

    — milkshake · Jul 2, 08:02 PM · #

17. Congrats! I love textpattern

    — mashishka · Jul 2, 08:20 PM · #

18. Many thanks to the developers, and of course thanks to Dean for starting it all.
    Looking forward to upgrading my live sites and a few in the works.

    — Robert · Jul 2, 09:23 PM · #

19. thanks so much :D

    — jack · Jul 3, 08:09 AM · #

20. Great job, keeop it going that way, using it for almost a year…

    — Jeroen · Jul 5, 12:19 AM · #

21. Thank you very much for your efforts. A great new release.

    — Alex McKee · Jul 5, 02:22 AM · #

22. Thanks very much for all the work you put into this. I use TXP on a daily basis and it continues to be a pleasure!

    — andreas · Jul 5, 01:35 PM · #

23. Excellent! Thanks very much :-)

    — wystan · Jul 6, 08:34 AM · #

24. Thanks a lot for your effort!

    — Jonathan Hedrén · Jul 6, 09:56 AM · #

25. Thank you for the amazing piece of work!

    — Styke · Jul 16, 04:49 PM · #

26. Thanks for cms ;)

    — SvT · Jul 20, 09:37 PM · #

27. A big thank you to everyone who works on this lovely publishing system!

    — Simon Griffee · Jul 24, 09:48 AM · #

28. Congratulations to TXP team, I just love TXP its pure simple awesomeness…

    — Textfan · Aug 1, 12:17 PM · #

29. Thanks for this nice upgrade.

    — Paveo · Aug 8, 08:38 AM · #

30. You guys rock!! Thanks so much for all your efforts.

    — Andre · Aug 10, 04:35 AM · #

31. All right, thank you for the new release

    — Blaise Freeman · Sep 10, 07:01 PM · #

32. I love TXP. Anything I need to do I am able to perform in such a short amount of time it is just crazy! Keep up the good work!

    — Edwin · Sep 24, 08:24 PM · #

33. Thank you to the developers.Looking forward to upgrading my live sites in a few days.

    — Kamin · Nov 21, 07:48 AM · #

34. TXP is the best blog/CMS system ever!

    — Aleph Ozuas · Nov 29, 01:34 PM · #

35. There hasn’t been an update in over 6 months.

    This TextPattern alive?

    I hope so

    — Tim · Nov 29, 08:15 PM · #

36. Keep it up, thank you!!

    — Dorian · Dec 6, 09:53 AM · #

37. Thanks from Russia!

    — Andrey · Jan 27, 12:07 PM · #

38. Great information, your post worth reading.

    — web guy · Jun 8, 02:41 PM · #

Message (Required)

Textile Help

Name (Required)

E-mail (Required)

Website

Remember

Copyright 2001–2009 Team Textpattern · All Rights Reserved