Hi everyone!
Totara Social 1.0.18 and 2.12 are "security" releases. Both include security fixes and several bug fixes. We recommend upgrading to the version suitable for your installation.
Here is the changelog for today's Totara Social releases:
Release 1.0.18 (13th October 2016) ================================================== Security fixes: TS-1009 Fixed login and logout session vulnerabilities TS-1008 Fixed user names and reported content not being properly escaped in topic posts Bug fixes: TS-989 Fixed browser console errors in the chat module TS-995 Added a form validation warning when a status update exceeds the maximum allowed character limit TS-985 Fixed a regression in file browser when the 'License metadata' option was enabled
Release 2.12 (13th October 2016) ================================================== Security fixes: TS-1009 Fixed login and logout session vulnerabilities TS-1008 Fixed user names not being properly escaped in topic posts Bug fixes: TS-989 Fixed browser console errors in the chat module TS-995 Added a form validation warning when a status update exceeds the maximum allowed character limit Third party libraries updates: Updated CSSTidy to version 1.5.5