News

New in Postmill: image metadata stripping

Postmill can now rewrite JPEG and PNG images to remove potentially sensitive metadata embedded within, such as GPS coordinates.

Read more…


New in Postmill: Search improvements

Postmill now allows searching for whole phrases, and filtering by type of post.

Read more…


Dropping PHP 7.4 and 8.0 support

Due to an upgrade from Symfony 5.4 to 6.4, Postmill now requires PHP 8.1 at minimum.

Read more…


Welcome to the redesigned Postmill website

After years of not really being useful, the Postmill website has been redesigned to fit actual content on it. This news section will be where security bulletins and other important news are announced from here on.

Read more…


Persistent cross-site scripting (XSS) vulnerability in Postmill

An issue was discovered in Postmill’s handling of background image uploads that allows malicious files to be uploaded and accessed. When opened in a browser, scripts in these malicious files can act as the currently logged in user.

Read more…


Follow @postmill_xyz on Twitter, @postmill@mastodon.social on Mastodon, or subscribe to our RSS feed to stay up to date.