block the same set of extensions in http, scalar and file uploads in Storage.
This commit is contained in:
Colin Kuskie
parent
1f99da3315
commit
9f724a7193
3 changed files with 109 additions and 20 deletions
|
|
@ -3,6 +3,7 @@
|
|||
- fixed #11779: SQLReport can run arbitrary queries
|
||||
- fixed possible vulnerability loading template parser
|
||||
- fixed possible vulnerability loading help files
|
||||
- fixed possible vulnerability with filenames in storage locations
|
||||
|
||||
7.9.11
|
||||
- fixed #11755: New cart does not update shipping methods correctly
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue