Re: Opting action method back into validation

pon., 7 gru 2020 o 15:24 Paul Zepernick napisał(a): > Is there any way to take a method that has been excluded from validation > in the configuration and turn it back on for a single action? For example, > I am using the REST plugin which excludes the show() method from the > validation. 99% of

[ANN] [SECURITY] Potential RCE when using forced evaluation - CVE-2020-17530

Forced OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution. Problem Some of the tag's attributes could perform a double evaluation if a developer applied forced OGNL evaluation by using the %{...} syntax. Using forced OGNL evaluation on untrusted

Opting action method back into validation

Is there any way to take a method that has been excluded from validation in the configuration and turn it back on for a single action? For example, I am using the REST plugin which excludes the show() method from the validation. 99% of the time I do not have any validation that I want to run,