Radiant 1.1.1 patches it, but you can create an initializer with "ActionController::Base.param_parsers.delete(Mime::XML)" in other versions
On Mon, Jan 21, 2013 at 2:28 PM, Adam Waterson <[email protected]> wrote: > Hey guys- > > > > What’s the most recent Ruby | Rails | Radiant combination that patches the > security risk? Ruby 1.9.1 | Rails 2.3.15 | Radiant 1.1.1 ????? > > > > Also is there a more up-to-date extensions list somewhere? Last time I > checked there were many on the radiant site that are a bit out of date. > > > > > > > > Met vriendelijke groet, > > > > > > Adam Waterson > > Online Marketing Manager > > __________________________ > > > > Planon International B.V. > > Wijchenseweg 8 > > 6537 TL Nijmegen > > The Netherlands > > > > M: +31 (0) 6 514 75 514 > > E: [email protected] > > O: +31 (0) 24 7501 548 > > W: www.planonsoftware.com > > -- Write intention revealing code #=> http://www.clean-ruby.com Jim Gay Saturn Flyer LLC 571-403-0338
