Warning: count(): Parameter must be an array or an object that implements Countable in /www/htdocs/w0073c6c/raumbasis.com-subdomains/contao4/vendor/lexik/maintenance-bundle/Listener/MaintenanceListener.php on line 180
RSS Reader - Marco Rehberg
xx

Contao news

Contao Open Source CMS news feed

Contao 4.8.0 is available

Contao version 4.8.0 is available. The release contains new features such as deferred image resizing, 2-factor authentication in the front end, splash screens for YouTube and Vimeo videos, service tagging with annotations and a lot more.

Contao Two Month Review May and June 2019

Over the last week of June, the thermometers were reading high all over Europe. Meteorologists nationwide agreed that the heat could break records.

Updates regarding Contao 3 and Slack

On 31 May 2019 the LTS period of Contao 3.5 expired. In this article I'll summarize what exactly that means. We have also decided to open our Slack workspace to everyone as an alternative to IRC which is not widely used in business.

Security vulnerability CVE-2019-11512

David Wind, penetration tester with A1 Digital, has discovered that the SQL injection vulnerability originally published under CVE-2017-16558 can still be exploited in the file manager in Contao 4. The security vulnerability has the identifier CVE-2019-11512.

Security update on April 30th, 2019

On April 30th, 2019, we will release an update for Contao 4.4 and 4.7, which fixes a security vulnerability.

Security vulnerability CVE-2019-10643

Security researcher Ali Razzaq has discovered that confirming an opt-in token does not invalidate previous opt-in tokens in Contao 4.7. The security vulnerability has the identifier CVE-2019-10643.

Security vulnerability CVE-2019-10642

Security researcher Ali Razzaq has discovered that the request token check can be bypassed in Contao 4.7. The security vulnerability has the identifier CVE-2019-10642.

Security vulnerability CVE-2019-10641

Security researcher Ali Razzaq has discovered that existing sessions are not correctly invalidated when a user changes their password in the back end or front end. The security vulnerability has the identifier CVE-2019-10641.

Security update on April 9th, 2019

On April 9th, 2019, we will release updates for Contao 3.5, 4.4 and 4.7, which fix several security vulnerabilities.

Recap of the first Contao Core Developers Meeting 2019

Every year, the Contao Core development team meets twice for a short code sprint of three days.