This is an automated email from the ASF dual-hosted git repository.
jleroux pushed a change to branch trunk
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git.
from 72405ab Fixed: Secure the uploads (OFBIZ-12080)
new fe4cefd Improved: Reflected XSS in content component (OFBIZ-11840)
new 2752e4e Fixed: Stored XSS in webappPath parameter from
content/control/EditWebSite (OFBIZ-12584)
The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
.../org/apache/ofbiz/content/data/DataEvents.java | 28 ++++++++++------------
framework/security/config/security.properties | 13 +++++++---
.../apache/ofbiz/security/SecurityUtilTest.java | 4 ++--
.../ofbiz/service/engine/EntityAutoEngine.java | 23 ++++++++++++++++++
4 files changed, 47 insertions(+), 21 deletions(-)
