Hi everyone, on Monday a new release was made available – you can use the Automatic Updater to download phpList 3.5.5 or update manually downloading the latest version on Sourceforge.
Release notifications are posted directly on your installation dashboards with a link to the release notes.
For those of you who follow release updates on the forum, you might already gotten an idea about the main changes. phpList it’s getting lots of attention on security issues lately and it’s great to see community contributors share their findings and provide their fixes to be made available as soon as possible.
Again, these fixes mitigate the risk of abuse from authenticated users but, we recommend that you bring your installation up to date to include these fixes.
You can read the full list of changes in the release notes.
Other changes you can expect to find in these release:
- Avoided warnings about $pageroot when phpList is installed in the web root, and improved warning message to include values that don’t match – thanks to @duncanc, see the pull request
- Removed redundant code following changes included in phpList 3.5.4 – thanks to @duncanc, see the pull request
- Added SameSite to the browsetrail cookie to handle warnings in Firefox – The SameSite attribute of the Set-Cookie HTTP response header allows you to declare if your cookie should be restricted to a first-party or same-site context – more information in the mantis issue, thanks to @duncanc for raising this
- Correct description on “CLICKTRACK” value in config_extended.php – thanks to @hiroyuki-sato for noticing and updating the information.
- Avoid listing “All lists” and “All public lists” among available option when “List Exclude” is used
Need help upgrading your phpList server to the most recent version? Ask the community at discuss.phplist.com. Professional support from community experts, as well as manuals, source code, and developer resources, can be found at phplist.org. Report bugs to the bugtracker!
This release is the work of @duncanc, @xheni, Dino Covotsos of Telspace Systems, @hiroyuki-sato and many other Open Source community members who have submitted bug reports, security reports and valuable feedback, as well as phpList Ltd developers. To get involved in phpList development, check out the developer resources pages.
To get involved in phpList development, check out the developer resources pages.
If you want to share the news in social media, you can use the links below:
- Telegram channel: