What's new in this release
Anchor |
---|
| Blacklist_optn |
---|
| Blacklist_optn |
---|
| Blacklist domains option in Global ConfigurationAdministrators can now blacklist private networks, hosts or subnets to avoid Server Side Request Forgeries (SSRF) through the Blacklist domains configuration option. By default, this option is disabled. If enabled, and if a request from any of these sites is received, an error message is displayed. However, if users still need to access a blacklisted site, they must contact their administrator to disable this option. Click the link named listed (in the description beneath the option) to view a pre-defined list of the most commonly blacklisted domains in a pop-up window. Image RemovedImage Added Anchor |
---|
| Enhanced_XSS_security |
---|
| Enhanced_XSS_security |
---|
| Enhanced security against XSS vulnerabilitiesThis app version now provides enhanced security to handle any cross-site scripting from the macros. |