Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CSRF protection support #7

Closed
GregDThomas opened this issue Oct 6, 2019 · 1 comment
Closed

CSRF protection support #7

GregDThomas opened this issue Oct 6, 2019 · 1 comment

Comments

@GregDThomas
Copy link
Contributor

@GregDThomas GregDThomas commented Oct 6, 2019

The (only) JSP page on this plugin is vulnerable to CSRF attacks. Although the attack is limited to enabling/disabling various loggings, this should be guarded against.

@GregDThomas

This comment has been minimized.

Copy link
Contributor Author

@GregDThomas GregDThomas commented Jan 4, 2020

Fixed by way of #8

@GregDThomas GregDThomas closed this Jan 4, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
1 participant
You can’t perform that action at this time.