1.4.0 - Security Release

willdurand released this 17 Oct 21:08

· 283 commits to master since this release

1.4.0

ae6f14a

Prevent XSS attack through the JSONP callback. A CallbackValidator now validates the callback value. If it is not valid, a HttpException is thrown (status code = 400).

For more information, read: Do I need to sanitize the callback parameter from a JSONP call?

Assets 2

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

1.4.0 - Security Release