Site.js version 17.3.3 released

This is a critical security fix for a major vulnerability where knowing the exact URL to a file in a dotfile directory within the site (e.g., the default .db JSDB database directory) would result in file download.

If you’re running Site.js in production, your servers will auto-update within the next six hours. Or you can manually update them now by running:

site update

Read more:

· · Web · 0 · 2 · 5
Sign in to participate in the conversation
Aral’s Mastodon

This is my personal Mastodon.