mirror of
https://github.com/discourse/discourse.git
synced 2024-11-27 02:23:44 +08:00
f45853676f
This only affects multisite Discourse instances (where multiple forums are served from a single application server). The vast majority of self-hosted Discourse forums do not fall into this category. On affected instances, this vulnerability could allow encrypted session cookies to be re-used between sites served by the same application instance. |
||
---|---|---|
.. | ||
api_keys_spec.rb | ||
auto_reject_reviewable_users_spec.rb | ||
category_tag_spec.rb | ||
content_security_policy_spec.rb | ||
email_style_spec.rb | ||
flags_spec.rb | ||
group_spec.rb | ||
invite_only_registration_spec.rb | ||
message_bus_spec.rb | ||
multisite_cookies_spec.rb | ||
multisite_spec.rb | ||
rate_limiting_spec.rb | ||
same_ip_spammers_spec.rb | ||
spam_rules_spec.rb | ||
topic_auto_close_spec.rb | ||
topic_thumbnail_spec.rb | ||
watched_words_spec.rb |