githubFork/roundcubemail.git

githubFork / roundcubemail

Roundcubemail devel

summary
reflog
commits
tree
docs
forks
compare

Add optional referer check to prevent CSRF in GET requests

thomascube

2011-02-08 a77cf2292b1b5e010172b572f618aef78795456b

 CHANGELOG

@@ -1,6 +1,7 @@
CHANGELOG Roundcube Webmail
===========================

- Security: add optional referer check to prevent CSRF in GET requests
- Fix email_dns_check setting not used for identities/contacts (#1487740)
- Fix ICANN example addresses doesn't validate (#1487742)
- Security: protect login form submission from CSRF

			@@ -1,6 +1,7 @@
			CHANGELOG Roundcube Webmail
			===========================

			- Security: add optional referer check to prevent CSRF in GET requests
			- Fix email_dns_check setting not used for identities/contacts (#1487740)
			- Fix ICANN example addresses doesn't validate (#1487742)
			- Security: protect login form submission from CSRF