Changeset: Changeset [148790795acba350fc42bd236b7f0da4a6e0e10e] by dleffler - Exponent CMS

Type	To find
responsible:me	tickets assigned to you
tagged:"@high"	tickets tagged @high
milestone:next	tickets in the upcoming milestone
state:invalid	tickets with the state invalid
created:"last week"	tickets created last week
sort:number, importance, updated	tickets sorted by #, importance or updated
Combine keywords for powerful searching.
Use advanced searching »

List changesets

Changeset [148790795acba350fc42bd236b7f0da4a6e0e10e] by dleffler

December 26th, 2015 @ 05:56 PM

Fix security issue by strengthening the server security parameters in folders receiving uploads and tighten elFinder security by not allow any files to be opened (only folders)...you'll need to use the 'preview' or 'edit' commands or click on the link in the 'info' dialog which will enforce the server security settings.[#1323 state:resolved]
https://github.com/exponentcms/exponent-cms/commit/148790795acba350...

Committed by dleffler

A framework/modules/file/connector/open.js
M cron/.htaccess
M files/.htaccess
M files/avatars/.htaccess
M files/uploads/.htaccess
M framework/modules/file/views/file/elfinder.tpl

Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

Bug Tracker for Exponent CMS

Shared Ticket Bins (Sort)

↓↑ drag 337 Open tickets
↓↑ drag 775 Resolved tickets
↓↑ drag 0 This week's tickets

Exponentcms Exponent CMS

Keyword searching

Changeset [148790795acba350fc42bd236b7f0da4a6e0e10e] by dleffler

Create your profile

Shared Ticket Bins (Sort)