Exponent's Latest News

Patch #2 Released for v2.3.2

January 12, 2015 Tags: patch, release, bugs

In addition to the issues addressed in v2.3.2 patch #1, this 2nd patch fixes some anomalies with the 'security fixes' (especially on older servers using php magic quotes).  It also provides many fixes and tweaks to the ecommerce system. Patch #2 to v2.3.2 is found at http://sourceforge.net/projects/exponentcms/files/exponent-2.3.2-patch-2.zip/download (read more)

Forum software updated

January 5, 2015

(Updated Jan 12th) We've updated the forum software from Vanilla Forums v2.0.18 to v2.1.6. This should not only implement the latest security fixes, but also allow us to provide a more favorable user experience in the future. (read more)

Updated Sample Themes Available

January 3, 2015 Tags: theme, release

Our standard set of sample themes which are no longer included with the standard package have been updated for v2.3.0+ to make them more HTML5 and Exponent 2.x compliant.  You can find them on SourceForge.net (read more)

Patch #1 Released for v2.3.2

December 30, 2014 Tags: patch, release, bugs

To start 2015 off on a good note, we've released the first patch to v2.3.2.  In addition to fixing a number of regression bugs, we've addressed another security issue (identified by Sudhanshu Chauhan from Octogence) in our current release.  Patch #1 to v2.3.2 is found at http://sourceforge.net/projects/exponentcms/files/exponent-2.3.2-patch-1.zip/download. (read more)

New Year Resolution for 2015

December 27, 2014 Tags: preview, ecommerce

New Year's ResolutionWith the new year upon us and a fresh release (v2.3.2) pushing us along, what's in store for Exponent CMS in 2015?  Though there are no major changes or updates planned at this point (unlike this time last year), you can rest assured there will be many fixes, tweaks, and interface improvements this coming year,  ​ (read more)

Version 2.3.2 Released to Consolidate Recent Patches

December 26, 2014 Tags: patch, release

We've gone ahead and released a new version (Christmas Consolidation) to help consolidate recent patches and reduce confusion.  Though this patch primarily addresses anomalies introduced with the recent XSS exploit fix, it also adds some new and updated features from the development code.  (read more)

Updated Patches released for v2.1.4 and v2.2.3

December 26, 2014 Tags: patch, release, bugs

To address some of the anomalies introduced in the recent patches to versions 2.1.4 and 2.2.3, we've issued v2.1.4 patch #7 and v2.2.3 patch #10.  This should solve the inability to delete files within the file manager, fix a navigation module permissions issue, and make the XSS security fix more robust.  You can find the patches here. (read more)

Corrected Security Patches released for v2.1.4, v2.2.3, and v2.3.1

November 13, 2014 Tags: patch, release, bugs

(Updated Patches are available for download - you may also pull from the 'master' repository!) After a number of false starts, we've finally fixed a security issue (identified by Mayuresh Dani and Narendra Shinde from qualys.com) in our current release and some of our older versions and now have a patches available to fix this specific issue: (read more)

Data Corruption with some Security Patches released for v2.1.4, v2.2.3, and v2.3.1

November 11, 2014 Tags: patch, bugs

Please do NOT install v2.3.1 Patch #1/#2/#3, v2.2.3 Patch #6/#7/#8, nor v2.1.4 Patch #3/#4/#5!  They may cause WYSIWYG text to become garbled when saving (on a server with php versions less than v5.4.0 with 'magic quotes' turned on), and would strip scripts when saving a Code Snippet module.  We have recently released a universal (server) fix for these versions. (read more)

'Upgrading Versions' Help Docs Added

October 3, 2014 Tags: tutorials

After a few recent requests, we've (finally) added several help documents to assist you in a performing a version upgrade.  They even provide some 'testing' and 'troubleshooting' procedures.  You'll find them here. (read more)