All releases tagged Security
Release Notes: For improved security, the complete code of the abstact user interfaces has been reviewed and improved to protect against cross site scripting. All request variables including cookies and server variables are now validated, character sets are specified explicitly, string conversion no longer propagates erroneous values, the X-Frame-Options header is supported, and Ajax requests are limited to the host the page originates from. Other improvements are a domain specific language style API for navigational queries, and easier Ajax requests to parts, subparts, and widgets.
