vidpush/config/initializers/disable_xml_params.rb

4 lines
140 B
Ruby
Raw Normal View History

2014-04-07 18:41:34 +00:00
# Protect against injection attacks
# http://www.kb.cert.org/vuls/id/380039
ActionDispatch::ParamsParser::DEFAULT_PARSERS.delete(Mime::XML)