mirror of
https://github.com/silverstripe/silverstripe-framework
synced 2024-10-22 12:05:37 +00:00
887 B
887 B
3.0.14
Overview
This release includes a fix for flush or isDev querystring parameters to be set via unauthenticated requests, as well as some other minor security fixes.
Security
- 2015-05-22 cb6717c Fix handling of empty parameter token (Damian Mooyman) - See ss-2015-014
- 2015-05-25 c14e7f6 Fix malformed urls redirecting to external sites (Damian Mooyman) - See ss-2015-012
- 2015-05-22 5f6ac27 Bug fix sqlquery select (Damian Mooyman) - See ss-2015-011