Skip to content

Pheditor 2.0.6

Latest

Choose a tag to compare

@hamidsamak hamidsamak released this 14 Jun 11:40

Fix password change feature and strengthen command validation in pheditor.php

This update adds a secure password change mechanism (with confirmation and hashing) and improves session handling for authentication. It also hardens the command execution filter by blocking additional unsafe characters (including |, backticks, and newline sequences) to reduce the risk of command injection bypasses.

Acknowledgments:
Thanks to @sondt99 for contributions and improvements.