Versions:

3.1.21

Change Log

Security

  • 2016-11-11 4440b88 Form@httpSubmission will no longer load submitted data to disabled or readonly fields (Daniel Hensby) - See ss-2016-010
  • 2016-11-11 61e4055 Cast FormField values as Text to prevent readonly fields embeding rogue HTML (Daniel Hensby) - See ss-2016-010
  • 2016-10-27 17097a4 Properly escape backURL for template injection (Daniel Hensby) - See ss-2016-016
  • 2016-07-14 04b4453 Missing ACL check on ReportAdmin (Daniel Hensby) - See ss-2016-012

Bugfixes

  • 2016-09-12 a14df0b Force line endings to LF on sake file (Daniel Hensby)

Was this article helpful?