News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Sanisoft Blog:
Email component in CakePHP is now Header Injection safe
July 16, 2007 @ 13:48:00

This new post on the Sanisoft blog has some good news for CakePHP developers concerning the bundled email component - it now can be made header injection safe.

In Cheesecake 1.x we had used our home grown component for sending emails. Having learned our lessons from the headaches of Pixelpost team due to email header injection attacks in their comment mailing code we had taken precautions to make our code safe from such attacks.

They proposed an update to the CakePHP functionality to integrate this solution on a more permanent basis.

2 comments voice your opinion now!
injection header cakephp framework patch ehnancement ticket injection header cakephp framework patch ehnancement ticket


blog comments powered by Disqus

Similar Posts

Phil Sturgeon's Blog: CodeIgniter "2.0": Rumours, facts and requests

Felix Geisendorfer's Blog: New Google Analytics API / DataSource!

Fabien Potencier's Blog: Create your own framework... on top of the Symfony2 Components (part 2)

Jamie Rumbelow's Blog: Setting up the perfect CodeIgniter & TDD Environment

Lorna Mitchell's Blog: Missing pcre.h when installing pecl_oauth


Community Events





Don't see your event here?
Let us know!


interview language wordpress unittest symfony application series podcast list threedevsandamaybe laravel introduction configure api developer release install library code community

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework