Today, a new version (1.1.7.3363) of CakePHP has been released. It fixes a XSS (cross-site scripting) vulnerability in CakePHP, you find the details in ticket #1272. So it is strongly recommended to update. You find the release on CakeForge. This release contains also the SessionHelper I wrote about in the post “New core helper: SessionHelper”.
Security fix for XSS vulnerability
Published on August 06, 2006 and tagged with cakephp
Search
Recent comments
- PHP OOPS Blog » 10 CakePHP Tutorials You Should Read and Become and expert in CakePHP Programming on Validation with CakePHP 1.2
- amjedonline on Using OAuth-enabled APIs with CakePHP
- cakebaker on File upload with Selenium
- Anu on File upload with Selenium
- cakebaker on Grouping “constants” with JavaScript