CORE

Version 1.13.2

The core package of Gila CMS


Changelog:

1.13.2

Fixed the menu editing page
Endpoint /lzld/thumb can return svg file

1.13.1

Session file is removed when user creates new session

1.13.0

Fixed an error with asset directories
The old packages and themes directory is cleaned up on upgrades
All static files are copied and reden from assets/ directory
Big refacture on the code (renaming classes, methods, etc)
Note: after upgrading this package, upgrade all the others, and the theme

1.12.6

Revert upload folder to assets

1.12.5

Uploads are saved in a non public folder
Table schemas can extend other tables
Fixed paragraphs bug in widgets
Allow CORS from configuration

1.12.4

List of cross origin resource sharing can be set at config file
List of trusted domains can be set at config file
Updated german language
Managers can be set to users

1.12.3
Support of template engines
File management is restricted in less folders and file types

1.12.2
Fixed bulk select problem in table administration
In registry edit, rows of child table can be created after registry save

1.12.1
Created the upload csv tool for content tables
Support for replicated databases

1.12.0
Added more languages
Added blocks: cards, side-image in package blocks
Fixed the reset password form
On package download it will run the update only if is active

1.11.11
Security updates
A new folder is created in media gallery every month

1.11.10
Can remove folders from media gallery

1.11.9
User can logout from other devices

1.11.8
Add page title to categories and tag pages
Pages can use admin template
Updated facebook comments package
Added block editor package
Fix error uploading images

1.11.7
Deny access to non admin in some pages
Enable CORS on settings

1.11.6
Security updates
Bugfixes of post categories

1.11.5
User can create a generic use token from admin/profile
Many CSRF vulnerabilities fixed with cm endpoint
Webp images can be displayed as thumbnails in administration
Not allowewd svg uploads for security

1.11.4
Uploaded images can autoresize with maximum dimensions
Max image width and heigth is set on admin/settings
Added accesses to editor role: pages, menus, widgets
Added portuguese language
On installation fields are filtered for xss input
Fixed access to media files for multisites
Added canonical link for blog/category

1.11.3
Load faster the pages of content administration

1.11.2
Safer upload and edit for phoos and files
Thumbnail display of posts at administration
Added more translations in german, spanish, french and estonian
Fixed a bug that was not generated the post slug

1.11.1
Avoid local file inclusion by reading files below the installation folder
Avoid xss attack from uploaded filenames
Cm endpoints return hear with content type json
Cm api accepts multiqueries (list,list_rows,describe)

1.11.0
Avoid local file inclusion by reading files below the installation folder
Avoid xss attack from uploaded filenames
Api: cm endpoints return hear with content type json
Api: cm api accepts multiqueries (list,list_rows,describe)

1.10.9
Themes support block editor with correct styling
Add template field for pages
Remove some warnings

1.10.8
Cannot upload a non media file at assets
Fix db backup bug
Widgets are more safe from xss attacks
Only main site can access file manager and phpinfo
Added popup_edit command for table schemas

1.10.7
Dont show error when controller is not found
Remove warnings on installation
Close pop up dialogs by clicking outside of them
Tmp media filenames are saved with their folders

1.10.6
Website favicon can be added
New page: /admin/theme_options
Added icons for default widgets
Updated post-category widget
Multisite support

1.10.5
Reuse the default form token
Added media tabs
Added sendmail event