-
Notifications
You must be signed in to change notification settings - Fork 800
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Contact Form: improve security of the form endpoint (#39759)
* Contact Form: improve security of the form endpoint Ensure that submitted forms can only be accessed by logged in users with the necessary capabilities. Reference: p9dueE-8ng-p2 Co-authored-by: Chris Jean <[email protected]> * changelog --------- Co-authored-by: Chris Jean <[email protected]>
- Loading branch information
1 parent
8af02a6
commit 1a544bc
Showing
3 changed files
with
14 additions
and
0 deletions.
There are no files selected for viewing
4 changes: 4 additions & 0 deletions
4
projects/packages/forms/changelog/fix-vulnerable-forms-feedback-api-endpoint
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
Significance: patch | ||
Type: fixed | ||
|
||
Improve security of the form endpoint |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
4 changes: 4 additions & 0 deletions
4
projects/plugins/jetpack/changelog/fix-vulnerable-forms-feedback-api-endpoint
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
Significance: patch | ||
Type: bugfix | ||
|
||
Contact Form: ensure that submitted forms can only be accessed by logged in users allowed to view form submissions. |