Infrastructure/ghost
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2025-02-10 23:36:14 -05:00
Code Issues Activity
ghost/core/server/web/admin
History
Hannah Wolfe 14b3431de1
🔒 Removed unused and insecure preview endpoint 
refs: https://github.com/TryGhost/Ghost/security/advisories/GHSA-9fgx-q25h-jxrg

- This was part of an experiment during the build phase of 4.0. We never ended up using it, but the endpoint wasn't cleaned up.
- The endpoint leaves sites open to a security vulnerability. Anyone running 4.x should update to 4.3.3

Credits: Paul Gerste, SonarSource (https://www.sonarsource.com/)
2021-04-29 12:10:39 +01:00
..
views 🔒 Removed unused and insecure preview endpoint 2021-04-29 12:10:39 +01:00
app.js 🔒 Removed unused and insecure preview endpoint 2021-04-29 12:10:39 +01:00
controller.js Moved core/server/lib/common/logging to core/shared/logging (#11857) 2020-05-28 19:30:23 +01:00
index.js Moved apps into web folder (#9308) 2017-12-06 17:37:54 +01:00
middleware.js Moved core/server/lib/url-utils to core/shared/url-utils (#11856) 2020-05-28 11:57:02 +01:00