mirror of https://github.com/MISP/MISP
afdcc1af0c
- as discovered and reported by Egidio Romano of Minded Security - Lacking checks of HTTP methods in some functionality could lead to a site admin uploading and executing malicious scripts - Tightened HTTP method verification across the board for actions that modify data - Turned some administrative tasks to POST only actions |
||
---|---|---|
.. | ||
Config | ||
Console | ||
Controller | ||
Lib | ||
Locale/eng/LC_MESSAGES | ||
Model | ||
Plugin | ||
Test | ||
Vendor | ||
View | ||
files | ||
tmp | ||
webroot | ||
.htaccess | ||
Makefile | ||
index.php |