mirror of
https://github.com/silverstripe/silverstripe-framework
synced 2024-06-28 15:39:40 +02:00
SECURITY More solid URL checks in Director::is_site_url(), using a conservative parse_url() hostname comparison rather than Director::makeRelative(), which is not designed for security purposes |
||
---|---|---|
.. | ||
ContentNegotiator.php | ||
Controller.php | ||
Cookie.php | ||
Director.php | ||
HTTP.php | ||
HTTPRequest.php | ||
HTTPResponse.php | ||
NullHTTPRequest.php | ||
PjaxResponseNegotiator.php | ||
RequestHandler.php | ||
Session.php |