security-and-privacy/ldapcherry
security-and-privacy/ldapcherry
1
0
Fork 0
mirror of https://github.com/kakwa/ldapcherry synced 2024-06-08 20:17:46 +02:00
Code Releases Activity

changelog

Browse Source
This commit is contained in:
kakwa 2019-02-08 20:47:15 +01:00
parent 8c0bf94904
commit 60d57d8530
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ChangeLog.rst
View File

@ -2,6 +2,8 @@ Dev
*** ***
* [sec ] fix XSS injection in the url redirect in the login page (thanks to jthiltges) * [sec ] fix XSS injection in the url redirect in the login page (thanks to jthiltges)
* [fix ] fix configuration consistency check for attribute file (error if a given backend is not declared in main .ini file but in attributes)
* [impr] better log error message if inconsistency between role, attribute and main .ini file for backends
* [impr] more systematic use of html and url escaping in the html rendering to prevent against content injection (thanks to jthiltges) * [impr] more systematic use of html and url escaping in the html rendering to prevent against content injection (thanks to jthiltges)
Version 0.5.2 Version 0.5.2