commit | b4d3b2a82107e231f4c53d85c8cf5f40831789cb | [log] [tgz] |
---|---|---|
author | Akron <nils@diewald-online.de> | Thu Nov 30 13:55:21 2023 +0100 |
committer | Akron <nils@diewald-online.de> | Thu Dec 07 06:49:53 2023 +0100 |
tree | ff1a866ffc21910546057c4881aab825fb01efcf | |
parent | d1084dc00ce02369c9c6fa8c8072b8a968319375 [diff] [blame] |
Do not rely on cookie path for session riding Change-Id: Ib285a797485ec3180cb9dad0ade556078456073c
diff --git a/Changes b/Changes index f91d5d9..7b57cfb 100644 --- a/Changes +++ b/Changes
@@ -2,6 +2,7 @@ - Change default api port to 443. - Update dependency of logback-classic. - Add warning regarding protected data. + - Do not rely on cookie path for session riding. This fixes a security issue! Please update!