FEP <= 2.3.8 is vulnerable to Cross Site Forgery
-
A new vulnerability was identified for your plugin on Feb 2 per the log above at Patchstack. Usually this is only made public after the software author has been notified.
Per the vulnerability report an ability exists to force higher privileged users to execute unwanted actions under their current authentication.
This should not be difficult to fix and we are wondering how you are progressing with an update?
The page I need help with: [log in to see the link]
Viewing 2 replies - 1 through 2 (of 2 total)
Viewing 2 replies - 1 through 2 (of 2 total)
- The topic ‘FEP <= 2.3.8 is vulnerable to Cross Site Forgery’ is closed to new replies.
