CakePHP官网安全更新（2023-09-28）

安全更新

The CakePHP core team is happy to announce the immediate availability of CakePHP 4.4.18. This is a maintenance release for the 4.4 branch that fixes several community reported issues and a minor security related fix.<br/><br/>Bugfixes<br/>--------<br/><br/>You can expect the following changes in 4.4.18. See the [changelog](https://github.com/cakephp/cakephp/compare/4.4.17...4.4.18) for every commit.<br/><br/>* ``RedirectException`` now forwards headers to redirect responses.<br/>* Allow ``ConsoleOutput`` to accept stream resources. This solves &amp;#039;too many streams open&amp;#039; problems when application code creates many instances of ``ConsoleIo``.<br/>* Fixed potential email address manipulation if unvalided address data was set into ``Cake\Mailer\Message``. Thank you to Waldemar Bartikowski who reported the issue via our security mailing list.<br/>* Fixed ``Cake\Http\Client`` cookie parsing with invalid values that lack both a value and ``=`` delimiter.<br/><br/>Contributors to 4.4.18<br/>----------------------<br/><br/>Thank you to all the contributors that helped make this release happen:<br/><br/>* Brian French<br/>* Mark Story<br/>* andrii-pukhalevych<br/>* othercorey<br/>* Waldemar Bartikowski<br/><br/>As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

CakePHP是一个运用了诸如ActiveRecord、Association Data Mapping、Front Controller和MVC等著名设计模式的快速开发框架

暂无

暂无

暂无

https://github.com/cakephp/cakephp/releases/tag/4.4.18