Latest News

Updated Patches released for v2.1.4 and v2.2.3

August 28, 2016 Tags: patch, release, bugs

Though they are both extremely old versions, they were the release before a major version change and are/may still be in use. Please bear in mind we strongly recommend your installations be updated to a much newer version which contains many more fixes and new features. Having said that, these patches (v2.1.4patch9 and v2.2.3patch12) fix a security vulnerability reported by Balisong which might allow uploaded scripts to be executed.

(read more)

Exponent web sites become more mobile friendly

June 16, 2016

Though you may not have immediately noticed a difference, both the main Exponent CMS site (this site) and the Exponent CMS Documentation web site have an updated look which is based on Twitter Bootstrap (3). While we've attempted to keep the basic look and feel for both sites, they will now be much more small device friendly.  Please be patient as we tweak a few things, especially in regards to how menus/navbars operate, etc...

Version 2.3.8 Released

May 2, 2016 Tags: release, bugs

This version, code-named 'Mayday Mayhem' fixes many issues in the previous version(s) and adds several new features. There is a new Social Feed module which allows aggregating and displaying items from Facebook, Twitter, Instagram, and/or Pinterest.  The changes include:

(read more)

Patch #4 Released for V2.3.7

February 16, 2016 Tags: patch, release, bugs

This patch fixes several issues in the v2.3.7 release and v2.3.7 patch #1, patch#2, and patch#3.  It also provides several tweaks and even some new features, though the main focus is providing several regression fixes.  It should be noted that the new optional 'Upgrade permissions' upgrade scripts will attempt to lock down the site by fixing file and folder permissions (except for cgi-bin) which means also turning off the 'execute' permission.   It must be noted that this patch (like the previous patches to v2.3.7) will break any custom text module view templates using in-place editing.  Unlike previous patches, this patch file also includes all the 'installation' files in the event you secured your site by deleting or renaming the /install folder. Patch #4 to v2.3.7 is found at

(read more)