Infrastructure/ghost: Independent technology for modern publishing, memberships, subscriptions and newsletters.

mirror of https://github.com/TryGhost/Ghost.git synced 2025-02-17 23:44:39 -05:00

Independent technology for modern publishing, memberships, subscriptions and newsletters.

blogging cms creator-economy ghost hacktoberfest headless-cms jamstack javascript journalism nodejs publishing web-application

Find a file

Sebastian Gierlinger f1ef797d6b Security improvements no issue - added CSRF protection - changed session handling to express.session - changed session handling to change session id - added config property useCookieSession - added file extension check for /ghost/upload - removed /ghost/debug/db/reset	2013-10-17 15:28:28 +02:00
ghost/admin	Security improvements	2013-10-17 15:28:28 +02:00

Sebastian Gierlinger f1ef797d6b Security improvements

no issue
- added CSRF protection
- changed session handling to express.session
- changed session handling to change session id
- added config property useCookieSession
- added file extension check for /ghost/upload
- removed /ghost/debug/db/reset

2013-10-17 15:28:28 +02:00

ghost/admin

Security improvements

2013-10-17 15:28:28 +02:00