Child pages
  • [security] Possible "Host" header injections [5.2.1-B1]

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


Forcing to use domain from command line might solve the problem, but not for websites where site domains are used. There you can set wildcards for domain matching and you can't check even them in the startup.php because no database connection is created yet. 

More Info

Related Tasks