Changeset [684d79424f768db8bb345d5c68aa2a886239492b] by dleffler
November 3rd, 2016 @ 01:23 PM
fix security vulnerability to bypass permissions using method
name in wrong case, reported by fyth
https://github.com/exponentcms/exponent-cms/commit/684d79424f768db8...
Committed by dleffler
- M framework/core/controllers/expController.php
- M framework/core/expFramework.php
- M framework/core/subsystems/expString.php
- M framework/modules/file/controllers/fileController.php
- M framework/modules/forms/controllers/formsController.php
- M framework/modules/navigation/controllers/navigationController.php
- M framework/modules/pixidou/controllers/pixidouController.php
Create your profile
Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป
Bug Tracker for Exponent CMS