Skip to end of banner
Go to start of banner

Release Notes 5.6.0

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 10 Next »


What's new in this release


Blacklist domains option in Global Configuration

Administrators can now blacklist private networks, hosts or subnets to avoid Server Side Request Forgeries (SSRF) through the Blacklist domains configuration option. By default, this option is disabled. If enabled, and if a request from any of these sites is received, users are prompted to contact the system administrator for further processing, or, an error message is displayed. Click the link named listed (in the description beneath the option) to view the list of the most commonly blacklisted sites in a pop-up window.

Enhanced security against XSS vulnerabilities

This app version now provides enhanced security to handle any cross-site scripting from the macros.

Resolved issues

type key summary reporter priority status resolution
Loading...
Refresh

  • No labels