February 12, 2014 | Posted by Paul
A patch has been released for Blesta that addresses bugs discovered since 3.1.0 was released. This patch also addresses a security vulnerability that affects 3.0.0-3.0.8 and 3.1.0. Please see the advisory. We strongly recommend patching your installation.
You can read more information about this patch, including the release notes, on our forums:
For 3.0.9 see http://www.blesta.com/forums/index.php?/topic/1950-release-309/
For 3.1.1 see http://www.blesta.com/forums/index.php?/topic/1951-release-311/
blesta-3.0.0-3.0.9.zip (3.0.9 patch)
blesta-3.1.0-3.1.1.zip (3.1.1 patch)
To patch your installation, please follow the instructions for Patching an Existing Install from our user manual. Don’t forget to run /admin/upgrade in your browser.
Tags: 3.0.9 | 3.1.1 | patch | security
February 12, 2014 | Posted by Cody
Versions 3.0.0 through 3.0.8, and 3.1.0 are affected.
Active and valid staff members may be able to gain additional permissions through crafted URLs. Because this issue requires that the user have an active and valid staff member account, this is classified as a Moderate vulnerability. Patch release 3.0.9 and 3.1.1 corrects this vulnerability.
If you are running 3.0.x upgrade to version 3.0.9. If you are running 3.1.0 upgrade to version 3.1.1.
CORE-1045 was discovered by Nerijus Barauskas at NGnTC.
January 16, 2014 | Posted by Paul
We’re excited to announce the release of Blesta 3.1. Thanks to everyone who participated in the beta!
Download 3.1 Now
Then, check out the docs to install or upgrade.
This release is packed with many new features, but perhaps the most prominent is configurable options. For a quick overview of configurable options, please watch the following short video:
What else is new in 3.1?
Core features include configurable options, package sorting, support staff signatures, cancel end of term package option, and many more. Please see the changelog for a full list.
So what’s next?
Development on 3.2 is in full swing. Rumor has it, a responsive bootstrap client interface is on the way.. among other things.
Tags: 3.1.0 | blesta 3 | blesta 3.1
January 16, 2014 | Posted by Paul
A patch has been released for Blesta that addresses bugs discovered since 3.0.7 was released. As usual, a big thanks to everyone who reported and confirmed these bugs on our forums, we appreciate your help.
You can read more information about this patch, including the release notes, on our forums at http://www.blesta.com/forums/index.php?/topic/1812-release-308/
To patch your installation, please follow the instructions for Patching an Existing Install from our user manual. (Or, wait a little while, I hear 3.1 may be out later today!)
Tags: 3.0.8 | patch
January 15, 2014 | Posted by Cody
Blesta 3.1 is loaded with great new features, but we didn’t forget about developers either. Here are a few new items developers can take advantage of in 3.1.
Improved CLI Installer
The command line installer gets non-interactive mode support in 3.1. This allows integration services to automate installation of Blesta. Read more about CLI installation.
Plugins, Modules, and Gateways now support a config.json file that defines basic details such as author, name, version, and more. This greatly reduces the redundancy and maintenance across extensions, simplifying the development process. See configuration for Plugins, configuration for Modules, and configuration for Gateways for more details.
Almost a dozen new events have been added in 3.1. Of course, every event added opens up endless possibilities for new Plugins. See all events here.
New features equals new and updated API commands (including Plugins). Check out the source code documentation.
Version 3.1 is currently in beta with a final release due out this week.
Tags: blesta 3.1 | v3.1 | version 3.1