mirror of
https://github.com/silverstripe/silverstripe-comments
synced 2024-06-26 06:29:36 +02:00
747d4f4402
- XSS an be stored in a cookie and potentially abused in other ways, so to prevent this we need to use session instead. This requires the user to have a session with silverstripe, but this is better than saving potentially malicious content in cookies. (Also some cookies have limited length). @see https://github.com/silverstripe/silverstripe-comments/issues/263 |
||
---|---|---|
.. | ||
Admin | ||
Controllers | ||
Extensions | ||
Forms | ||
Model | ||
Tasks |