Skip to main content

This site requires you to update your browser. Your browsing experience maybe affected by not having the most up to date version.

 

SilverStripe 3.1.10 Security Release

SilverStripe version 3.1.10 stable has been released today, you can get a copy from our...

Read post

SilverStripe version 3.1.10 stable has been released today, you can get a copy from our downloads section. All users of 3.1.9 and below are strongly advised to upgrade.

What's new in this version

The major changes included in this release are improvements to encoding within the framework and cms, to ensure that any cross site scripting vulnerabilities are closed.

While these vulnerabilities are not minor issues, they can only be exploited by users with CMS access directly, and users with only trusted CMS users should not be at risk of malicious attack.

For specific details of these issues check our security announcement page.  See the changelog for information on other fixes and changes.

Upgrading

If you are using composer, upgrading is pretty simple. If you are linking to the 3.1.*-dev branch, you likely already have the update from the main branch, but if not a “composer update” will do the job.

If you are linked to a 3.1.* tag or development branch then update your composer.json as below.

"require": {
"silverstripe/cms": "3.1.10",
"silverstripe/framework": "3.1.10"
}

You can create a new web project to try out using our composer web installer

composer create-project silverstripe/installer ./mynewproject 3.1.10

Please note any issues you discover on our Github issue tracker for frameworkcms, or the installer.

About the author
Damian Mooyman

Damian is a developer who has been stuck into SilverStripe for a few years, and a part of the company for a while too. He’ll be around on github under the handle @tractorcow if you need him.

Post your comment

Comments

  • Thank you very much. And keep up the great work.

    SilverStripe is my preferred CMS since the very beginning.

    Posted by Jan, 20/02/2015 1:32am (5 years ago)

RSS feed for comments on this page | RSS feed for all comments

Like what you have read?

Sign up for our weekly blog digest sent to your inbox.

Subscribe