Prevented data leakage in contrib.admin via query string manipulation.

This is a security fix. Disclosure following shortly.
2025-10-31 09:41:08 +00:00 · 2014-08-07 00:18:10 -04:00
parent 5307ce565f
commit 53ff096982
8 changed files with 115 additions and 7 deletions
--- a/docs/ref/exceptions.txt
+++ b/docs/ref/exceptions.txt
@@ -56,6 +56,7 @@ SuspiciousOperation

    * DisallowedHost
    * DisallowedModelAdminLookup
+    * DisallowedModelAdminToField
    * DisallowedRedirect
    * InvalidSessionKey
    * SuspiciousFileOperation