mirror of
https://git.code.sf.net/p/seeddms/code
synced 2025-02-06 07:04:57 +00:00
add CVE for fixed csrf attacks
This commit is contained in:
Uwe Steinmann
parent
23c9edd5a4
commit
34b1574cc1
|
|
@ -6,6 +6,7 @@
|
|||
- fix potential clickjacking attack with manipulated email address of a user
|
||||
- loading more items on ViewFolder page obeys sort order
|
||||
- fix possible csrf attacks due to missing form token
|
||||
(CVE-2021–26215, CVE-2021–26216)
|
||||
- show an error msg on the documents detail page if the checksum of version
|
||||
mismatch
|
||||
- overhaul notifications, type of receiver is now passed to notification
|
||||
|
|
|
|||
Loading…
Reference in New Issue
Block a user