therealmikz

Consider changing default authorization mode (header mode encourages insecure client architecture)

7

Due to this article: https://dev.to/rdegges/please-stop-using-local-storage-1i04 storing token client-side on browser applications is insecure. Any server credentials shouldn't be accessible for javascript due to potential XSS vulnerability. There's no secure way...

FTP::directoryExists returns false if any ancestor directory contains spaces

2

Example (assuming that /foo bar/baz exists): `$ftp->directoryExists('/foo bar/baz'); //false` My PHP version: PHP 5.5.9-1ubuntu4.17 (cli) (built: May 19 2016 19:05:57) Copyright (c) 1997-2014 The PHP Group Zend Engine v2.5.0, Copyright...