From 607aea0580cef44a682eb9f47d5e029f5e6f8eb5 Mon Sep 17 00:00:00 2001
From: Marius Granholt <marius-g@users.noreply.github.com>
Date: Thu, 28 Feb 2019 16:45:32 +0100
Subject: [PATCH] protects against CVE-2018-6389, sets CONCATENATE_SCRIPTS to
 false as default (#42)

---
 config/application.php | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/config/application.php b/config/application.php
index aecdc8b..7c82b24 100644
--- a/config/application.php
+++ b/config/application.php
@@ -75,6 +75,11 @@
 define('DISABLE_WP_CRON', env('DISABLE_WP_CRON') ?: false);
 define('DISALLOW_FILE_EDIT', true);
 
+/**
+ * To make WP load each script on the administration page individually; protects against CVE-2018-6389 DoS attacks
+ */
+define('CONCATENATE_SCRIPTS', false );
+
 /**
  * Bootstrap WordPress
  */