Install

Works with Drupal: 7.x

Using Composer to manage Drupal site dependencies

Downloads

Download htaccess-7.x-2.3.tar.gztar.gz 15.42 KB
MD5: e80829ef19e45fc4795fb153f914fbd8
SHA-1: dc17c27fe221aaccd1e4f0f6c184de19aed43259
SHA-256: 3f7ed9198ccae0e3859e38886c3e3248f1c4e0e945b7c5aceba724f343a7d5c8
Download htaccess-7.x-2.3.zipzip 18.35 KB
MD5: ef8b0aa1521bbb3018c413ea4b9db6d7
SHA-1: 9976c10251dcec79bd693e37a22ef08d80669469
SHA-256: 176666467a08dc09de5de61fe07938433c90caeb31c0dc9577506f240fc510c7

Release notes

This is a security release. SA-CONTRIB-2015-007 - Htaccess - Cross Site Request Forgery (CSRF).

Some administration links were not properly protected. A malicious user could trick an administrator into deploying and deleting .htaccess files by getting them to request certain URLs, thereby leading to a Cross Site Request Forgery (CSRF) vulnerability.

No database change.

Created by: Jibus
Created on: 6 Jan 2015 at 20:28 UTC
Last updated: 24 Nov 2015 at 11:39 UTC
Security update

Other releases