mirror of https://github.com/MISP/MISP
fix: [security] restrict setting to cli only. enabling this setting could allow potential ssrf attacks, as reported by Ianis BERNARD - NATO Cyber Security Centre
parent
07b091778a
commit
8dcf414340
|
@ -5867,7 +5867,8 @@ class Server extends AppModel
|
|||
'value' => false,
|
||||
'test' => 'testBool',
|
||||
'type' => 'boolean',
|
||||
'null' => true
|
||||
'null' => true,
|
||||
'cli_only' => 1
|
||||
),
|
||||
'rest_client_baseurl' => array(
|
||||
'level' => 1,
|
||||
|
|
Loading…
Reference in New Issue