fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-04-14 07:52:13 +09:00
Code Issues Projects Releases Packages Wiki Activity
rhymix/common
History
Kijin Sung e423cba24d Use Origin header before Referer to check CSRF 
OWASP에서는 Referer 헤더보다 Origin 헤더를 먼저 체크하는 것을 권장합니다.
Referer가 비어 있는 경우에도 Origin 헤더에는 유용한 정보가 들어 있을 수 있기 때문입니다.

https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html
2021-02-23 16:51:46 +09:00
..
css Replace CSS check with window.matchMedia 2020-12-13 19:43:11 +09:00
defaults Add more items to reserved word list 2021-02-04 23:40:33 +09:00
framework Use Origin header before Referer to check CSRF 2021-02-23 16:51:46 +09:00
img Remove Flash FLV player that doesn't work anymore 2021-01-08 21:02:45 +09:00
js Show memory usage in debug panel 2021-02-09 23:52:35 +09:00
lang Fix misleading error message 2021-02-04 21:09:23 +09:00
libraries Force use of latest cacert.pem from Mozilla 2021-01-20 00:56:23 +09:00
manual/server_config Support XE-compatible rewrite rules 2020-06-12 14:16:36 +09:00
scripts Add script to update all modules from the CLI 2020-03-29 17:30:00 +09:00
tpl Remove ssl_actions and add rewrite_level to inline JS 2021-01-20 23:55:09 +09:00
autoload.php Adjust loading priority of modules vs. plugins 2021-01-21 00:44:35 +09:00
constants.php Version 2.0.7 2021-02-05 21:37:44 +09:00
functions.php Various fixes to improve PHP 8.0 compatibility 2020-10-31 00:25:26 +09:00
legacy.php Various fixes to remove warnings in PHP 8.0 2020-12-15 00:18:42 +09:00