0001-Fix-created-directories-and-files-default-rights.patch
0002-Use-php-html-safe.patch
0003-No-next-upstream-version-display-in-private-area.patch
0004-Fix-displayed-version-in-the-private-interface.patch
0005-Fix-XSS-in-private-content.patch
0006-Fix-XSS-from-iframe-in-private-content.patch
0007-Fix-objects-injection-via-unserialize.patch
0008-Increase-sanitizing-to-fix-PHP-code-injection.patch
0009-Update-security-screen.patch
0010-Report-de-r23063-Sanitizer-controler-les-entree-four.patch
0011-ne-pas-permettre-n-importe-quoi-en-url-de-site-Tim-C.patch
0012-Report-de-r23151-Eviter-d-accepter-n-importe-quoi-da.patch
0013-l-URL-de-rappel-de-mot-de-passe-doit-etre-une-URL-sa.patch
0014-Eviter-des-illegal-offset-si-l-utilisateur-n-est-pas.patch
0015-Fix-3831-report-de-r23141-et-r23148.patch
0016-Report-de-r23179-ne-pas-afficher-l-url-brute-venant-.patch
0017-Report-de-r23180-pas-d-url-absolue-dans-var_url-Nico.patch
0018-Report-de-r23185-Eviter-aussi-les-urls-absolues-wind.patch
0019-Report-de-r23186-echapper-les-guillemets-dans-les-no.patch
0020-Report-de-r23200-exec-valider_xml-n-est-executable-q.patch
0021-Fix-3845-s-curiser-les-exec-info_plugin-et-puce_stat.patch
0022-Fix-3847-s-curiser-exec-plonger.patch
0023-chapper-le-contenu-de-l-ent-te.patch
0024-Report-de-r23696-Securiser-l-URL-qu-on-insere-sur-le.patch
0025-Report-de-r23707-Securiser-les-URLs-renvoyees-par-se.patch
0026-Report-de-r23710-Echapper-le-charset-dans-le-message.patch
0027-Report-de-r23713-Permettre-de-passer-le-mode-de-filt.patch
0028-Report-de-r23716-Pas-de-onclick-ni-de-popup-JS-dans-.patch
0029-Report-de-r23752-On-ajoute-sur-le-lien-du-pied-de-pa.patch
0030-Report-de-r23908-Prise-en-compte-amelioree-du-flag-p.patch

CVE-2019-16392.patch
CVE-2019-16393.patch
CVE-2019-16391-1.patch
CVE-2019-16391-2.patch
CVE-2019-16394.patch
