Strapi v3.2.5 Release Notes

Release Date: 2020-10-22 // over 3 years ago
  • πŸ”’ 🚨 Security

    πŸ”’ These security issues are only exploitable by a user with admin panel access and the right permissions.

    • [core:framework] Add permission to CTB routes (#8439) @Convly
    • πŸ”’ [plugin:content-manager] Fix XSS security with the wysiwyg preview (#8440) @soupette
    • 🚚 [plugin:upload] Remove usage of unsecure proxy for now (#8442) @alexandrebodin

    Big shoutouts πŸ”₯ to TomΓ‘Ε‘ Melicher and LukΓ‘Ε‘ VΓ‘clavΓ­k for finding these issues and helping us make Strapi better !

    🍱 πŸ› Bug fix

    🍱 πŸ’… Enhancement

    • ⚑️ [admin] add didUpdateRolePermissions event (#8333) @petersg83
    • πŸ“š [documentation] Adapt README.md because NodeJS 14 is supported now (#8417) @bykof

    πŸ“š πŸ“š Migration guides can be found here πŸ“š