From 5303321952c7d550af7c777e67cbeda41d7a129a Mon Sep 17 00:00:00 2001
From: James Cole <james@firefly-iii.org>
Date: Thu, 3 Jun 2021 12:51:31 +0200
Subject: [PATCH 1/3] Fix export vulnerability, found by GitHub user @oomb and
 disclosed via the excellent huntr.dev platform.

---
 resources/views/v1/export/index.twig | 7 ++++---
 routes/web.php                       | 2 +-
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/resources/views/v1/export/index.twig b/resources/views/v1/export/index.twig
index 1671d28b1f..5709a8e9e8 100644
--- a/resources/views/v1/export/index.twig
+++ b/resources/views/v1/export/index.twig
@@ -15,9 +15,10 @@
                     <p>
                         {{ 'export_data_expl'|_ }}
                     </p>
-                    <ul>
-                        <li><i class="fa fa-fw fa-download"></i> <a href="{{ route('export.export') }}" title="{{ 'export_data_all_transactions'|_ }}">{{ 'export_data_all_transactions'|_ }}</a></li>
-                    </ul>
+                    <form action="{{ route('export.export') }}" method="post">
+                        <input type="hidden" name="_token" value="{{ csrf_token() }}"/>
+                        <button type="submit"><i class="fa fa-fw fa-download"></i> {{ 'export_data_all_transactions'|_ }}</button>
+                    </form>
                     <p>
                         {{ 'export_data_advanced_expl'|_ }}
                     </p>
diff --git a/routes/web.php b/routes/web.php
index c0fe573993..1d9f84de74 100644
--- a/routes/web.php
+++ b/routes/web.php
@@ -538,7 +538,7 @@ Route::group(
 
     // index
         Route::get('', ['uses' => 'Export\IndexController@index', 'as' => 'index']);
-        Route::get('export', ['uses' => 'Export\IndexController@export', 'as' => 'export']);
+        Route::post('export', ['uses' => 'Export\IndexController@export', 'as' => 'export']);
     }
 );
 /**

From 9b03ae160d9d8754bed193903a988c9fc91dcdfc Mon Sep 17 00:00:00 2001
From: James Cole <james@firefly-iii.org>
Date: Thu, 3 Jun 2021 12:54:15 +0200
Subject: [PATCH 2/3] Update changelog.

---
 changelog.md | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/changelog.md b/changelog.md
index 2665a7bbd8..4d0cc77089 100644
--- a/changelog.md
+++ b/changelog.md
@@ -2,6 +2,14 @@
 All notable changes to this project will be documented in this file.
 This project adheres to [Semantic Versioning](http://semver.org/).
 
+## 5.5.12 - 2021-06-03
+
+⚠️ On July 1st 2021 the Docker tag will change to `fireflyiii/core`. You can already start using the new tag.
+
+### Security
+
+- This version of Firefly III fixes a security vulnerability in the export routine. You are advised to upgrade as soon as possible. All credits to the excellent @oomb.
+
 ## 5.5.11 - 2021-05-08
 
 ⚠️ On July 1st 2021 the Docker tag will change to `fireflyiii/core`. You can already start using the new tag.

From 28479ef2ed45522be877c5c425ab6f89fc5f277b Mon Sep 17 00:00:00 2001
From: James Cole <james@firefly-iii.org>
Date: Thu, 3 Jun 2021 12:54:21 +0200
Subject: [PATCH 3/3] Update version.

---
 config/firefly.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/firefly.php b/config/firefly.php
index a6eebbc793..8f2e017207 100644
--- a/config/firefly.php
+++ b/config/firefly.php
@@ -100,7 +100,7 @@ return [
         'handle_debts' => true,
     ],
 
-    'version'                      => '5.5.11',
+    'version'                      => '5.5.12',
     'api_version'                  => '1.5.2',
     'db_version'                   => 16,
     'maxUploadSize'                => 1073741824, // 1 GB