Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Prevent arbitrary shell command execution
Prior to this, Administrators were able to edit 'dot_tool' and 'neato_tool' config options from the Manage Configuration Page These can now only be set in the config_inc.php file. Fixes #26091, CVE-2019-15715 Signed-off-by: Damien Regad <dregad@mantisbt.org> Original commit message reworded, added CVE reference.
- Loading branch information