GetSimple CMS

The CMS uses XML to store data, avoiding the complex MySQL database that everybody seems to use.

What is new in this release:

• Fixed:
• Files does not show permissions on windows
• image.php dir traversal SECURITY
• log.php xss SECURITY
• Prevent backend in frames x-frame policy SECURITY
• Better cookie security SECURITY
• Backup-edit traversal SECURITY
• Security vulns SECURITY
• Corrupt page fatal error
• Fatal Error => zip-Backup
• Placeholder confusion

What is new in version 3.3.7:

• Fixed:
• Files does not show permissions on windows
• image.php dir traversal SECURITY
• log.php xss SECURITY
• Prevent backend in frames x-frame policy SECURITY
• Better cookie security SECURITY
• Backup-edit traversal SECURITY
• Security vulns SECURITY
• Corrupt page fatal error
• Fatal Error => zip-Backup
• Placeholder confusion

What is new in version 3.3.5 / 3.3.6 BETA 3:

• Fixed:
• Files does not show permissions on windows
• image.php dir traversal SECURITY
• log.php xss SECURITY
• Prevent backend in frames x-frame policy SECURITY
• Better cookie security SECURITY
• Backup-edit traversal SECURITY
• Security vulns SECURITY
• Corrupt page fatal error
• Fatal Error => zip-Backup
• Placeholder confusion

What is new in version 3.3.5:

• Fixed:
• Files does not show permissions on windows
• image.php dir traversal SECURITY
• log.php xss SECURITY
• Prevent backend in frames x-frame policy SECURITY
• Better cookie security SECURITY
• Backup-edit traversal SECURITY
• Security vulns SECURITY
• Corrupt page fatal error
• Fatal Error => zip-Backup
• Placeholder confusion

What is new in version 3.3.4:

• FIXED:
• New page nonindex existing-url notices
• Undo for create new page
• Missing argument 1 for getRegexUnicode() notices
• Admin panel sidebar on Safari, weird transition

What is new in version 3.3.3:

• FIXED:
• Component slugs case sensitive
• CKEditor toolbar newline issue
• Pages cache (pages.xml) not updated after UNDO operation, in page edition
• GSSUPPRESSERRORS constant typo -flexphperia SUPRESSERRORS still works but is now deprecated
• Setup form still showing on install error
• filetime uses ctime
• scrolltofixed assets
• Component XML corruption

What is new in version 3.3.2:

• FIXED:
• Temp files are deleted
• Uploadify does not error out
• File upload overwrite protection double encoding
• Permalink not trimmed
• htaccess rewrite config
• Reset password username leakage
• get_Page_Excerpt refactor
• Sidebar links to components, focus component content
• Create component doesn't focus input
• debugLog improvements, accepts arrays as argument
• Compatibility with Apache v2.4 discussion
• Lang file loading protection
• Make installs more simple
• mb_internal_encoding not set
• Remove Yahoo ping sitemap function DEPRECATED
• Header content-type utf-8
• htaccess wrap rewrite

What is new in version 3.3.1:

• FIXED:
• Support plugins that modify CKE globals.
• Menu manager subsequent saves fail -apt.
• Left in debugging.
• Missing failedlogins.log issue.

What is new in version 3.3.1 alpha:

• FIXES:
• Support plugins that modify cke globals
• Menu manager subsequent saves fail -apt
• Left in debugging
• Missing failedlogins.log issue

What is new in version 3.3.0:

• NEW:
• Always show component tags
• i18n fallback default language
• Cutting edge and betas
• Dynamic CSS classes in menus
• Missing page cache implementations
• Detect API timeouts for error handling
• Better health check for disabled functions
• Better textarea tab spacing
• Additional health check info
• Header content-type utf-8
• Increase cookie timeout
• update.php issues
• Added page cache filter
• Added sitemap filter
• Cannot update or install from root
• Lazy loading pagecache in caching functions -cnb
• Component input focus on side nav -cnb
• Phantom / invisible slugs
• Added editor link filter
• ckeditor upgraded to 3.6.6
• FIXES:
• $EDOPTIONS comma safe
• cke globals are not actually global
• i18n_r called before lang loaded
• Health check xml invalid if empty
• Logins broken by php notice/warnings
• Login cookie set twice
• Admin styles are cached and old after upgrades
• Mail warning on install, breaks cookies
• Ajax redirects not handled
• Plugins not sorted
• Cannot redeclare in upload.php
• ck-editor IE10 fatal errors
• Plugins updated js messages not translated
• Setup shows the form again if there is a mail error

What is new in version 3.2.3:

• FIXED:
• $EDOPTIONS gets a , prefixed to it breaking plugins CKE.

What is new in version 3.2.2:

• NEW:
• Refactor plugins checking, plugins are only scanned on plugins page now
• Persistent plugin api calls on backend, now confined to plugins page only
• Replaced memory_limit -1 with 100M in thumb.php
• JavaScript injection filtering on pages display
• Enabled auto saving to live pages for general testing
• File upload whitelists advanced config
• Remove branding from public admin pages
• Added github link on support page
• Improved ckeditor optons and toolbar config capability
• Hide innovation settings if theme is not innovation
• Added google+, many others, to innovation theme social
• Added css classes for widesec and wideopt
• Switching Themes shows preview image now
• CKEditor dataformatter behavior, breakbefore and indentation formatting changes
• Remove back end assets from public front end auth pages
• Auto meta descriptions no longer default, added GSAUTOMETAD
• Remove meta generator

What is new in version 3.2.1:

• Restored missing version in admin footer
• Health check plugins.xml chmod check 644 writable
• Some javascript i18n translations missing
• Removed extra install.php from core
• Fixed missing undo link for page deletions
• Default index.xml date was sep 2009, is now install date upon install
• Slug creation problems on servers with no mb extension
• Page options parent is blank, display no parent now
• Attempt to fix 3.0 upgrade issues, missing cache folder issue

What is new in version 3.2.0:

• Added Flush Cache link to settings to clear all caches
• Sorted list now sort using natural sort, fixes file01,file10,file2
• New plugin toggle handling, and speed improvements.
• Generate missing thumbnails preview visits, useful for ftped files
• Style changes to CkEditor, all editors should inherit GS styles now, some border fixes
• Codemirror style changes, better programming fonts, lineheight, alignments fixes
• Removed image link borders in emails
• Added utf-8 meta to cardinal theme
• Menu items now contain class "active" in addition to current, more standardized for frameworks.
• GS css compression fixes

What is new in version 3.2.0 beta:

• Added Flush Cache link to settings to clear all caches
• Sorted list now sort using natural sort, fixes file01,file10,file2
• New plugin toggle handling, and speed improvements.
• Generate missing thumbnails preview visits, useful for ftped files
• Style changes to CKEditor, all editors should inherit GS styles now, some border fixes
• CodeMirror style changes, better programming fonts, lineheight, alignments fixes
• Removed image link borders in emails
• Added utf-8 meta to cardinal theme
• Menu items now contain class "active" in addition to current, more standardized for frameworks.
• GS CSS compression fixes

What is new in version 3.1.1:

• Sitemap generation fix
• Pages cache fix
• Plugins cache fix
• Better theme editor file detection
• Better detection of an empty slug or page title upon page save
• Thumbnail creation in subfolders fix
• Menumager updates
• Better detection of an empty slug or page title upon page save
• New error loggin class
• Debuglog fixes

What is new in version 3.1.1 Beta:

• Sitemap generation fix
• Pages cache fix
• Plugins cache fix
• Better theme editor file detection

What is new in version 3.1:

• Automatic generation of sitemap when changes occur (create,delete pages/settings)
• Better notification when GetSimple core needs updating
• Notification when plugins are out of date via Extend API
• Ability to "clone" a page
• Breadcrumbs removed from <h1> in admin panel
• Theme editor has syntax highlighting and is now full-screen
• Theme editor allows you to edit any file within the /theme/ folder
• CAPS LOCK detection for password fields
• Login page hooks now working again
• Can "undo" a page slug change
• When ZipArchive is not available, website backup creates a tar.gz file
• All delete/enable/disable functions have been ajax-ified
• If there is only one language installed, it is the default language. No longer is en_US hardcoded as default.
• Login cookie is now Sitewide-enabled by default
• MIME type validation of files that are uploaded, also restricts certain upload file extentions (php, sh, js, html)
• Removed jQuery plugin quick-paginate
• Upgraded jQuery to 1.7 via Google CDN; GS jQuery refactoring/cleaned code
• You can now view a "private" page if you are logged in
• Innovation plugin is i18n language compatible
• Drag and drop menu management
• The GetSimple API was created
• The core now supports the HTTPS protocol
• Ability to turn off CSRF protection in gsconfig.php
• Page autosave feature added (disabled by default)
• Admin panel theme bug fixed
• Can force template files to be ignored in page editor with .inc.php

What is new in version 3.0:

• Multiple subfolder support within Files Management.
• CKEditor upgrade.
• Filebrowser & internal links within CKEditor.
• Plugins can be enabled/disabled.
• Plugin multi-language support.
• Multi-user login capabilities.
• CSS3 tweaks.
• Admin panel theming.

Requirements:

• PHP 5.1.3 or higher
• SimpleXML
• SMTP Server
• mod_write enabled
• Adobe Flash 8 or higher
• JavaScript enabled on client side