Previous Version (4.0)

Changelog

Broadleaf Enterprise 4.0.21-GA

Released on October 6, 2023

This is the 20th patch release for the Broadleaf Enterprise 4.0.x module.

An at-a-glance view of the issues that were closed in this release

Major Bug(1)

Fixed the Insecure Direct Object Reference (IDOR) vulnerability that was reported. Added additional checks for the sandboxes' relation to admin user during promote operation.

Enhancements(1)

Merged bug fixes and enhancements included in 3.2.22-GA and 3.2.23-GA

Total Resolved Issues: 2