1.. _upgrade-to-3.0.14: 2 3#################### 43.0.14 release notes 5#################### 6 7******************** 8What's new in 3.0.14 9******************** 10 11Bug Fixes 12========= 13 14* Fixed an issue where privileged users could be tricked into performing actions without their knowledge via a CSRF vulnerability. 15* Fix issue with causes menu classes to be duplicated in advanced settings 16* Fix issue with breadcrumbs not showing 17* Fix issues with show_menu template tags 18* Minor documentation fixes 19* Fix an issue related to "Empty all" Placeholder feature 20* Fix plugin sorting in Python 3 21* Fix search results number and items alignment in page changelist 22* Preserve information regarding the current view when applying the CMS decorator 23* Fix X-Frame-Options on top-level pages 24* Fix order of which application URLs are injected into ``urlpatterns`` 25* Fix delete non existing page language 26* Fix language fallback for nested plugins 27* Fix render_model template tag doesn't show correct change list 28* Fix Scanning for placeholders fails on include tags with a variable as an argument 29* Pin South version to 1.0.2 30* Pin html5lib version to 0.999 until a current bug is fixed 31* Fix language chooser template 32 33 34Potentially backward incompatible changes 35========================================== 36 37The order in which the applications are injected is now based on the page depth, if you 38use nested apphooks, you might want to check that this does not change the behaviour 39of your applications depending on applications urlconf greediness. 40 41 42Thanks 43====== 44 45Many thanks community members who have submitted issue reports and especially to 46these GitHub users who have also submitted pull requests: douwevandermeij, furiousdave, 47nikolas, olarcheveque, sephii, vstoykov. 48 49A special thank to Matt Wilkes and Sylvain Fankhauser for reporting the security issue.