Информация о файле
Обновления 4.4.9.2 - 4.4.9.1 вместе в архиве сразу лежит ланг пак для всех компонентов
Security
- Block binary/octal/hex/decimal based hostnames from being submitted in forms that could trigger an SSRF.
- Gfycat OEmbed endpoint could create XSS. Also informed Gfycat of issue. - Thanks to René Kroka - https://renekroka.cz for reporting this issue.
- Addition attachment permission checks when downloading attachments.
Core
- Fixes an issue where cookies set by javascript are not stored permanently
Commerce
- Fixes an issue when paying with PayPal
