I suggest you ...

RAILO-287 Allow the CGI scope be writable.

Allow the CGI scope be writable. XSS can happen via the CGI scope and it would be nice to filter and change it.

17 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    I agree to the terms of service
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    John BlayterJohn Blayter shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    2 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      Submitting...
      • Bruce KirkpatrickBruce Kirkpatrick commented  ·   ·  Flag as inappropriate

        I had to replace hundreds of CGI path variables on 60 sites to reference a copy of the CGI in the last week. This feature would have helped save some time in migrating to using a single tomcat context.

      Feedback and Knowledge Base