About the Author

Phillip Verheyden

Software Architect

in Development 2 min read

Broadleaf 3.1.13-GA and 3.0.16-GA Released

Broadleaf 3.1.13-GA and 3.0.16-GA are released on Maven Central. This contains a patch to a security vulnerability in the Broadleaf admin panel that allowed an admin user to hijack another admin user's account. Customer-facing logins were unaffected. We recommend immediate upgrades to these latest versions of Broadleaf in order to patch this security vulnerability.

3.1.13-GA Release Notes

3.0.16-GA Release Notes