As part of our ongoing commitment to providing you with the best CMS experience, we're excited to announce the launch of versions 9.2.3 and 8.5.14!
Concrete CMS 9.2.3 and 8.5.14 is Now Available!
Dec 6, 2023
by
9.2.3 Release Highlights
In the 9.2.3 release, we've focused on refining user experience and security. Key improvements include:
We've renamed Twitter to “X” in social networking services, streamlined health report functionalities, and enhanced the Dashboard's usability with alphabetically sorted packages and more informative package messages.
This release addresses several bugs, including issues with layout presets under PHP 8, importing IP access logs, and resolving discrepancies in exporting/importing styles and blocks. We've also fixed errors related to file folder management and page export behaviors.
Security
Our commitment to security is stronger than ever, with fixes addressing multiple CVEs, including Reflected XSS and Stored XSS vulnerabilities. These fixes enhance the security of various components.
See our security release blog post for more information about security fixes.
8.5.14 Release Highlights
The 8.5.14 release continues our support for TLS 1.2 in Zend Mail, ensuring secure email communications.
Security
Significant security enhancements have been made, including fixes for CSRF vulnerabilities in event deletion dialogs and Stored XSS in Layout Preset Names. These fixes address specific CVEs, strengthening the overall security of the CMS
For detailed release notes and security fix information, visit our security release blog post.
To explore all the new features in version 9, check out our landing page.