You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@struts.apache.org by mc...@apache.org on 2012/01/22 23:34:07 UTC
svn commit: r1234638 - /struts/site/src/site/xdoc/announce.xml
Author: mcucchiara
Date: Sun Jan 22 22:34:06 2012
New Revision: 1234638
URL: http://svn.apache.org/viewvc?rev=1234638&view=rev
Log:
Added countermeasure
Modified:
struts/site/src/site/xdoc/announce.xml
Modified: struts/site/src/site/xdoc/announce.xml
URL: http://svn.apache.org/viewvc/struts/site/src/site/xdoc/announce.xml?rev=1234638&r1=1234637&r2=1234638&view=diff
==============================================================================
--- struts/site/src/site/xdoc/announce.xml (original)
+++ struts/site/src/site/xdoc/announce.xml Sun Jan 22 22:34:06 2012
@@ -47,6 +47,9 @@ limitations under the License.
<li>
ParameterInterceptor vulnerability allowed remote command execution
</li>
+ <li>
+ Default acceptedParamNames has been updated to more restrictive values
+ </li>
</ul>
</p>
<p>