[CAM-9107] Prevention of Cross-Site-Request-Forgery - camunda JIRA

Type: Bug Report
Resolution: Fixed
Priority: L3 - Default
Fix Version/s: 7.10.0, 7.7.9, 7.8.8, 7.9.2, 7.10.0-alpha2
Affects Version/s: None
Component/s: admin, cockpit, tasklist
Labels:
- SUPPORT

The webapp violates against the owasp rule OTG-SESS-005 (Cross-Site-Request-Forgery).

This is the controller panel for Smart Panels app

There are no comments yet on this issue.

Assignee:: Michael Schoettes

Reporter:: Roman Smirnov

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 29/May/18 8:46 AM

Updated:: 19/Sep/18 1:46 PM

Resolved:: 11/Jul/18 2:43 PM