Tiki 1.7.7 is available since 2004-05-16.
1.7.7 backports some security problems addressed in Tikiwiki 1.8.2, mainly Path Disclosure, XSS and improved CSRF routines (thanks to http://gulftech.org). It is offered for Eta Carinae Tikis that don't want to go to Polaris.
Damian Parker was the coordinator of this release.
Some links for more information about this release
- SF release info
- ReleaseProcess177
Upgrade instructions
Those on ReleaseNotes181 are the best available.
Changes since 1.7.6
Bugs known to have been introduced
Security improvements
- Creation of index.php to prevent directory listing
- All libraries protect against being called directly
- var check cleaning
Other changes
- Confirmation button on all destructive actions
- Updated robots.txt file for better search engine robot control.
- Removed tabs library because it's not free -- mose
http://dhtmlkitchen.com/scripts/tabs/index.jsp
http://dhtmlkitchen.com/scripts/tabs/buy/index.jsp