diff options
| author | thomascube <thomas@roundcube.net> | 2011-02-08 08:13:06 +0000 |
|---|---|---|
| committer | thomascube <thomas@roundcube.net> | 2011-02-08 08:13:06 +0000 |
| commit | a77cf2292b1b5e010172b572f618aef78795456b (patch) | |
| tree | d9fbb4dcfd86852db6528d977838d983bffdda1f /CHANGELOG | |
| parent | 61846d1ad3b0f40ac90e12f8dcd1ac9a95ebd296 (diff) | |
Add optional referer check to prevent CSRF in GET requests
Diffstat (limited to 'CHANGELOG')
| -rw-r--r-- | CHANGELOG | 1 |
1 files changed, 1 insertions, 0 deletions
@@ -1,6 +1,7 @@ CHANGELOG Roundcube Webmail =========================== +- Security: add optional referer check to prevent CSRF in GET requests - Fix email_dns_check setting not used for identities/contacts (#1487740) - Fix ICANN example addresses doesn't validate (#1487742) - Security: protect login form submission from CSRF |