2010/5/10 Tom Boutell <[email protected]>: > I think your responses on this issue illustrate the fact that it is > likely being misunderstood by many developers, resulting in security > holes in many Symfony applications.
Yeah, you are right. Maybe that's because "security things" aren't simple and obvious issues. I also assume, that symfony is mostly doing right things (bad assumption from security POV :)). Most developers uses modified CRUD forms or write their own on the same fashion as CRUD forms, so this bug may exist in more than 75% symfony apps. Thanks for opening my eyes on that issue. Regards, Michal -- If you want to report a vulnerability issue on symfony, please send it to security at symfony-project.com You received this message because you are subscribed to the Google Groups "symfony developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/symfony-devs?hl=en
