THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
- Strict DMI mode was improved and now it should work correctly, you can find more details here
- Default acceptedParamNames were updated to more restrictive values to solve security vulnerabilities in DebuggingInterceptor, CookieInterceptor and ParameterInterceptor. Some of these security weaknesses remain to exist ParameterInterceptor - support for param names with withe spaces was dropped! Also a new configuration was added to CookieInterceptor call acceptCookieNames to prevent remote code execution with cookies. There is a security weaknesses in DebuggingInterceptor as a wanted feature in Development Mode, which anyway should not be used it in a production environment!
...