FileMaker Server 2024 (21.0.2) is available

Claris announced a new version of their FileMaker Server to fix a few critical bugs in Web Direct:

This release includes fixes and performance improvements for FileMaker WebDirect as well as general security improvements and is recommended for all customers.

Release notes >

NOTE: FileMaker Server is available as a full installer, which can also upgrade or update an existing installation. Download the installer from your Electronic Software Download (ESD) page or from Claris Customer Console. For further information, see FileMaker Server Help or visit the support resources on our website.

From the release notes:

Version 21.0.2 – June 2024

New features and enhancements

FileMaker WebDirect

• The mobile browser pull-to-refresh option is now disabled by default.

Security

• This release includes general security improvements.

Addressed issues

FileMaker WebDirect

• FileMaker WebDirect slowed significantly after upgrading to FileMaker Server version 21.0.1.
• FileMaker WebDirect intermittently displayed layout freezing, keyboard key repeats, and disappearing text resulting in data loss.

Security

• A reflected cross-site scripting (XSS) attack was made possible due to returned login errors not being HTML encoded.

Everyone should update soon to avoid being hacked using the mentioned cross-site scripting attack.

great thanx @MonkeybreadSoftware! Does it fix that sever bug of data loss mentioned in July's DIGFM YouTube video?

which data loss, can you elaborate ?

Is this a bug that was new in version 21 only? Or does it stretch back to version 20? Trying to figure out if moving from 20 to 21 is urgent or not...

Over on Claris community, they confirm the bug is not a new one:

"Yes, this vulnerability is present in FileMaker Server 2023 (20) and earlier. We recommend updating to the latest version of Claris FileMaker Server to get the latest security updates."