diff options
| author | Frederic Guillot <fred@kanboard.net> | 2016-03-04 22:06:55 -0500 |
|---|---|---|
| committer | Frederic Guillot <fred@kanboard.net> | 2016-03-04 22:06:55 -0500 |
| commit | f9f5d7188b71203558b97968081f72734df35e15 (patch) | |
| tree | 8de4bc7f721ef1f0fe9f39174f8d52c61724e43c /ChangeLog | |
| parent | a7f3e3bec50762f2083f70672a0ba3db533fc8bb (diff) | |
Fix security issue: Unexpected access to any tasks from a shared public board
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -5,6 +5,10 @@ Improvements: * Added support for HTTP header "X-Forwarded-Proto: https" +Security issues: + +* Access allowed to any tasks from the shared public board by changing the URL parameters + Version 1.0.26 -------------- |