Foswiki 2.1.11 is released
Foswiki 2.1.11 is now available to be
downloaded. This release came earlier than expected due to the severe security issues
found in previous versions, as detailed in CVE-2026-2861. Thanks goes to Jan Seebens of Telekom Germany for finding
the initial issue. While investigating the vulnerability, a few more were found that followed similar patterns in the cpde.
Please note that some long-deprecated endpoints have been removed in order to reduce the vulnerable surface area.
See the
release notes for additional information.
Foswiki 2.1.11 is now available to be downloaded. This release came earlier than expected due to the severe security issues
found in previous versions, as detailed in CVE-2026-2861. Thanks goes to Jan Seebens of Telekom Germany for finding
the initial issue. While investigating the vulnerability, a few more were found that followed similar patterns in the cpde.
Please note that some long-deprecated endpoints have been removed in order to reduce the vulnerable surface area.
See the release notes for additional information.
I blog about Foswiki.
Leave a comment