Loading...

Log In
Closed

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: Highest
Component/s: None
Labels:

CVSS Score:
4.9

UserPreferencesResource exposes all data stored in a UserPreferences object, and allows updating it via a POST. This vulnerability needs to be closed before the next deployment.

links to

http://panopticon.internal.atlassian.com/xsrf_detection/confluence/1131/

mentioned in: Page Loading...; Page Loading...

Assignee:: Hai Nguyen (Inactive)
Reporter:: Richard Atkins
Votes:: 0 Vote for this issue
Watchers:: 8 Start watching this issue

Created:: 15/Jul/2014 8:47 AM
Updated:: 22/Aug/2019 3:49 AM
Resolved:: 18/Jul/2014 4:24 AM

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates