Details
-
Bug
-
Resolution: Fixed
-
Low
-
5.7.1
-
None
-
5
-
Description
Potential XSRF vulnerability in tasks. No atl-token is present in the request to complete a task which suggests an attacker may be able to craft a cross site request forgery and action a task without the correct authorisation.