Nicolas Brassard
Nicolas Brassard
This commit simply checks, for each event attached to the page, if there is a filter with `xsrf` in its name. If so, it will make sure that the token...
Yes, you've read right. - [x] Create a new migration for the new version, eg. 3.0.0 which should implement getVersion method - [x] Make sure all migration file < 2.7.0...
See commit details. Fixes #2670 (Do not merge for now)
I propose the following, to make sure no user can set those values ``` ### PROTECT RESERVED QUERY STRINGS RewriteCond %{THE_REQUEST} \?(.*&)?mode= [OR] RewriteCond %{THE_REQUEST} \?(.*&)?symphony-page= RewriteRule .* - [F,L]...
Affected Symphony version(s) : 3.0.0 PHP version(s) : all MySQL version(s): 5.7+ OS(es) : all There are 3 possible optimisation that can be done on the current 3.0.x codebase. 1....
It does not belong in this class...
As the title says! @jonmifsud This would need testing if you do not mind!
Affected Symphony version(s) : 2.6.11, 2.7.0, 3.0.0 I've always found it weird to have the Optional labels on checkbox fields. I mean, the checkbox is either on, off or null....
OWASP defines mod_sec rules that prohibits usage of certain SQL keywords (union, regexp, contains). When filtering entries, I often get a mod_sec hit, which prevents it from running the query....
http://www.getsymphony.com/learn/api/2.5.1/toolkit/gateway/ The name always puzzled me... We have Email Gateway... It would be easy to deprecate and offer path to migration (via inheritance).