tonyair/silverstripe-framework
1
0
Fork 0
mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-09-18 15:36:30 +02:00
Code Issues Projects Releases Wiki Activity
f3ef04a432
silverstripe-framework/docs/en/changelogs/rc/3.1.0-rc3.md
Ingo Schommer f3ef04a432 FIX Auto-escape titles in TreeDropdownField 
Related to SS-2013-009. While the default "TreeTitle" was escaped
within the SiteTree->TreeTitle() getter, other properties like SiteTree->Title
weren't escaped. The new logic uses the underlying casting helpers
on the processed objects.
2013-09-24 21:41:21 +02:00

316 B
Raw Blame History

3.1.0-rc3

Overview

Security: XSS in CMS "Security" section (SS-2013-007)

See announcement

Security: XSS in CMS "Pages" section (SS-2013-009)

See announcement