This is an automated email from the ASF dual-hosted git repository.
jleroux pushed a change to branch release22.01
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git.
from 2ad16f3 Fixed: Secure the uploads (OFBIZ-12080)
new 169e370 Fixed: Stored XSS in webappPath parameter from
content/control/EditWebSite (OFBIZ-12584)
new 5f92549 Improved: Reflected XSS in content component (OFBIZ-11840)
The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
.../org/apache/ofbiz/content/data/DataEvents.java | 28 ++++++++++------------
framework/security/config/security.properties | 13 +++++++---
.../apache/ofbiz/security/SecurityUtilTest.java | 4 ++--
.../ofbiz/service/engine/EntityAutoEngine.java | 23 ++++++++++++++++++
4 files changed, 47 insertions(+), 21 deletions(-)
