News Feed
Jobs Feed
Sections




News Archive
Sanisoft Blog:
Email component in CakePHP is now Header Injection safe
by Chris Cornutt July 16, 2007 @ 13:48:00

This new post on the Sanisoft blog has some good news for CakePHP developers concerning the bundled email component - it now can be made header injection safe.

In Cheesecake 1.x we had used our home grown component for sending emails. Having learned our lessons from the headaches of Pixelpost team due to email header injection attacks in their comment mailing code we had taken precautions to make our code safe from such attacks.

They proposed an update to the CakePHP functionality to integrate this solution on a more permanent basis.

2 comments voice your opinion now!
injection header cakephp framework patch ehnancement ticket injection header cakephp framework patch ehnancement ticket


blog comments powered by Disqus

Similar Posts

Mike Davies' Blog: PHP Frameworks: comparing CakePHP and symfony

The Show: The Show Strikes Back!

PHPImpact Blog: PHP Compiler for the .NET Framework

Sebastian Bergmann's Blog: PHP Has No Culture of Testing

Ibuildings Blog: Dependency Injection and Zend Framework Controllers


 Community Events









Don't see your event here?
Let us know!

development phpunit unittest podcast tool code composer example opinion object testing database framework interview language introduction zendframework2 api community release

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework