Repository: TribalSystems/Zenario · Tag: 9.3.57709 · Commit: 1d4decd · Released by: TribalSystems

This update to Zenario 9.3 contains important bug fixes for security and other matters.

Session fixation protection to admin/user logins

Whenever someone logs into Zenario, either as an extranet user or as an administrator, Zenario will now regenerate their session ID.

This has no effect or downside to the user, and helps protect against a session fixation attack if an attacker is using some other exploit to trigger one.

See this link for an explanation of what session fixation is.

Other fixes

Bad GIFs

PHP 8 has now started issuing a fatal error if you attempt to upload a GIFs image with the background layer set to an invalid colour. This has caused occasional confusion, so we've written a work-around to automatically fix the issue.

Nests

We've fixed a bug with grid layouts in nests, where if you created a layout without a grouping, the grid layout inside a nest plugin would fail to work.

This release has 2 assets:

  • Source code (zip)
  • Source code (tar.gz)

Visit the download page to download them.