Skip to content

security fix
Compare
Choose a tag to compare
@ezzarghili ezzarghili released this 24 Dec 13:29
· 13 commits to master since this release
v2.0.2
6b2824b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This release contains a security fix addressing a potential case where a malicious user may bypass the recaptcha by injecting his own secret if the package user has not sanitized the recaptcha Response from the client.

Thanks to @dsamarin for reporting this

Assets 2
Loading