Project

General

Profile

Actions

Bug #2391

closed

Frontend forms need tokens and tokens protection checks

Added by beat almost 14 years ago. Updated almost 14 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Target version:
Start date:
09 March 2011
Due date:
% Done:

100%

Estimated time:

Description

All frontend forms are missing token protections with cbGetSpoofInputTag, and save functions evaluating posts need to check them to protect against CSRF attacks with cbSpoofCheck.

Actions #1

Updated by beat almost 14 years ago

  • Subject changed from Backend forms need token protection checks to Frontend forms need tokens and tokens protection checks
Actions #2

Updated by krileon almost 14 years ago

  • Status changed from New to Resolved
  • Assignee changed from krileon to beat
  • % Done changed from 0 to 100

Fixed in r1615

Actions #3

Updated by krileon almost 14 years ago

  • Status changed from Resolved to Closed
Actions

Also available in: Atom PDF