Composr Issue Tracker
Welcome to the issue tracker! Here, you can view reported software issues.All users are encouraged to report software issues or suggestions to the tracker. You will be awarded points for each issue you report that gets completed by someone.
Developers are encouraged to go through the tracker and implement issues. You will receive points for issues you implement. Prioritise issues in the following order:
- Security issues
- Major issues
- Minor issues
- Trivial issues
- Feature requests
- Be aware this requires you create a measure for voting, and you achieve a simple majority, before implementing into core code. This is not necessary for non-bundled addons.
Please read our providing feedback tutorial page before reporting an issue.
Click here to view the full issue tracker catalogue.
Click here to report an issue or suggestion.
Search tracker issues
Open issues
| Identifier | Issue type | Title | Status | Funded? | |
|---|---|---|---|---|---|
| #6227 | Feature request or suggestion | Always mark Private Topics validated | Open | No | View |
| #6222 | Feature request or suggestion | Consider requiring command line for cron_bridge.php (except for query mode) | Open | No | View |
| #6221 | Feature request or suggestion | Add support for upgrading via command line | Open | No | View |
| #6217 | Trivial issue (does not break functionality) | Code Book, Part 4: Update standard on json_decode use | Open | No | View |
| #6215 | Trivial issue (does not break functionality) | Antifeatures still says WebDAV not included | Open | No | View |
| #6214 | Feature request or suggestion | composr_tutorials: Add jsdoc to Composr API docs | Open | No | View |
| #6213 | Feature request or suggestion | Forbid joining when a site is closed | Open | No | View |
| #6212 | Trivial issue (does not break functionality) | Default admin email is not default | Open | No | View |
| #6210 | Minor issue (breaks specific functionality) | Clicking a link in an overlay loads the link in the overlay improperly | Open | No | View |
| #6209 | Trivial issue (does not break functionality) | 502 Bad Gateway | Open | No | View |
Completed issues
| Identifier | Issue type | Title | Status | Funded? | |
|---|---|---|---|---|---|
| #4157 | Security issue (exploit in Composr) | XSS if showing topics via main_multi_content block | Completed | No | View |
| #4202 | Security issue (exploit in Composr) | XSS hole in non-bundled image_slider addon | Completed | No | View |
| #4391 | Security issue (exploit in Composr) | main_multi_content block not respecting validation | Completed | No | View |
| #4632 | Security issue (exploit in Composr) | Image Filter Bypass Leads Remote Code Execution [Mass-add to gallery] | Completed | No | View |
| #4633 | Security issue (exploit in Composr) | Reflected Cross Site Scripting (XSS) | Completed | No | View |
| #4653 | Security issue (exploit in Composr) | Strip GPS EXIF data by default | Completed | No | View |
| #4668 | Security issue (exploit in Composr) | stored XSS | Completed | No | View |
| #4697 | Security issue (exploit in Composr) | Fix issues in TLS mailer connection | Completed | No | View |
| #4762 | Security issue (exploit in Composr) | Critical Security Vulnerability in Composr CMS | Completed | No | View |
| #4765 | Security issue (exploit in Composr) | Gallery items set as Members only outputs thumbnails for Guests | Completed | No | View |
