Skip to content

1.6.7
Compare
Choose a tag to compare
@ianmjones ianmjones released this 08 Feb 19:07
· 3 commits to master since this release
1.6.7
ce056fd
This commit was signed with the committer’s verified signature.
ianmjones Ian M. Jones
SSH Key Fingerprint: dkvGpGw1s0kfEAb5Zir+iQP+jetAZlBDYYiwBytXbs8 Learn about vigilant mode.

Fixed

  • Security: Unserializing an object related to plugin settings now passes 'allowed_classes' => false to avoid instantiating the complete object and potentially running malicious code
  • Security: Processing of the email queue now restricts the type of data allowed to ensure stored queue items meet requirements
Assets 3
Loading