Loading...
 

Release 1.7.5 is out NOW!

Author: Damian Parker - Published

After a long wait, and then CVS problems at SourceForge, we have finally been able to release 1.7.5 tonight. The main purpose of this release is to address the CSRF issues which affect web applications. However we have also managed to sneak in some extra goodies as a bonus! Download your copy now from our SourceForge Project Area.

Tikiwiki now official part of Gentoo Linux

Author: ang - Published - (4846 Reads)

Tikiwiki has made it finally into Gentoo Portage CVS yesterday: this means we now are officially part of the great Gentoo Linux distribution. Hence, today is a great day for celebration for both communities, and just another reason for more users to test and witness the availability of intriguing content management technologies like Tikiwiki. Let's start the New Year with New Tools!

Tikiwiki and Sea Surfing

Author: mose - Published

Web applications are more and more popular, more and more used, and, in consequence, more open to abuse than in past years. Tricks like XSS and CSRF are begining to spread rapidly, at least in rumor, in specialized networks. All live web applications need to verify they have basic protections against such abuses if they intend to provide a trustworthy work environment.

Jun0 brought attention to the vulnerability of tikiwiki to the CSRF trick. After some examination and work, a commando patch operation added basic protection in tikiwiki. 1.7.5, under test right now, was created to meet the security needs of the community, and will be released in next hours/days. If security is vital to your activities, upgrade now to cvs version; branches 1.7, 1.8, and HEAD are patched. We need your help to track possible side effect of the patch, then we can release without fear of regression.

Here is the mail I recently sent to a small number of tikiwiki developers explaining the whole story...

Tiki 1.7 -Eta Carinae- released

Author: marclaporte - Published

Tiki 1.7 features over 150 changes (new features, usability enhancements or bugfixes) and a general improvement in usability and look and feel. New features: Galaxia Workflow Engine, JgraphPad integration, WAP & VoiceXML support, Live support system, Event Calendar, phpOpenTracker inegration, Charts and rankings, Print2PDF, Short URLs, Enhanced Install system incl. multisite feature, Banning system, Copyrights management System, Improved forums & blogs, WYSIWYG editor for blogs, UTF-8 encoding for emails and rss, Tiki Debugger Console, Improved general UI for users and admins, Multi page articles, Enhanced Category & structure systems, Many new themes, Script/robotic user registration blocker.

Download now!

Upcoming Events

No records to display

Why Register?

Register at tiki.org and you'll be able to use the account at any *.tiki.org site, thanks to the InterTiki feature. A valid email address is required to receive site notifications and occasional newsletters. You can opt out of these items at any time.