Hi everyone!
We have just published a security release for Totara Social 2! It includes bug fixes, improvements, and several security fixes. We recommend upgrading to this version.
Here is the changelog for today's Totara Social 2.21 release:
Release 2.21 (12th October 2017) ================================================== Improvements: TS-1683 Updated product logo TS-1667 Backported basic support for MariaDB 10.2.x Security fixes: TS-1729 Fixed user input null characters and invalid unicode TS-1732 Made blogpost 'submittedtime' check a parameter in SQL query TS-1740 Made file picker type parameter more strict Bug fixes: TS-1715 Made sure cron is not run on closed sites TS-1711 Made sure SSO is disabled when site is closed Backported fixed from Mahara: Adding filter/match for Google Spreadsheets (Bug #1435750) Support for new Google Calendar embed URL (Bug #1600665) Third party libraries updates: Updated MobileDetect library to version 2.8.26