release-notes-3.3.2.rst
25 lines
| 499 B
| text/x-rst
|
RstLexer
r1 | |RCE| 3.3.2 |RNS| | |||
----------------- | ||||
Release Date | ||||
^^^^^^^^^^^^ | ||||
- 2015-06-05 | ||||
security fixes | ||||
^^^^^^^^^^^^^^ | ||||
* Stored XSS attempts on user login fields, and other text input fields. | ||||
* DOM Based XSS attempts | ||||
* HTML Injection | ||||
* Cross frame scripting (XFS) | ||||
* Invalidation of concurrent sessions on password change. | ||||
* Downgrading of HTTPS connections. | ||||
fixes | ||||
^^^^^ | ||||
* Generation of URLs on system with custom URL prefixes. | ||||
* VCSServer: Improved memory management of the cache data used by the server. | ||||