- Added sort by message size.
- Fixed XSS vulnerability in content-type display in the attachment area
of read_body.php discovered by Roman Medina.
+ - Get alternating row colors of addressbook in sync with mailbox list.
+ - Give proper error when PEAR DB not found.
+ - Remove inappropriate strip_tags() from add-to-addressbook (#968475).
+ - Prefs caching didn't work properly with register_globals off (#995102).
+ - Security: fix SQL injection vulnerability in addressbook
+ (CVE ID: CAN-2004-0521).
+ - Removed html_top and html_bottom hooks. No longer used/needed.
Version 1.5.0
--------------------