mirror of
https://github.com/10h30/ultimatemember.git
synced 2026-07-11 10:46:11 +09:00
Fix: Address CVE-2025-13217 and improve input sanitization
Resolved CVE-2025-13217 by implementing proper input sanitization and escaping for iframe URLs in YouTube, Vimeo, and Google Maps embeds. This update ensures safer handling of user-provided links to mitigate potential security vulnerabilities.
This commit is contained in:
+1
-1
@@ -2,7 +2,7 @@
|
||||
|
||||
= 2.11.1 December xx, 2025 =
|
||||
|
||||
|
||||
Fixed: CVE-2025-13217
|
||||
|
||||
= 2.11.0 December 02, 2025 =
|
||||
|
||||
|
||||
Reference in New Issue
Block a user