Project

General

Profile

Actions

Bug #2391

closed

Frontend forms need tokens and tokens protection checks

Added by beat about 13 years ago. Updated about 13 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Target version:
Start date:
09 March 2011
Due date:
% Done:

100%

Estimated time:

Description

All frontend forms are missing token protections with cbGetSpoofInputTag, and save functions evaluating posts need to check them to protect against CSRF attacks with cbSpoofCheck.

Actions

Also available in: Atom PDF