[Pushed] Restrict ACP session-related cookie path to admin directory
#1
As the ACP security bug hunt is on, the path of the cookies related to the ACP session should be set only to the admin directory, so they are not accessible on other parts of the forum.
devilshakerz.com/pgp (DF3A 34D9 A627 42E5 BC6A 6750 1F2F B8AA 28FF E1BC) ▪ keybase.io/devilshakerz
Reply


Messages In This Thread
Restrict ACP session-related cookie path to admin directory - by Devilshakerz - 2014-11-18, 02:54 PM

Forum Jump:


Users browsing this thread: 1 Guest(s)