[Tickets #12804] Re: CSRF in changing permissions functionality
noreply at bugs.horde.org
noreply at bugs.horde.org
Tue Oct 29 11:36:01 UTC 2013
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/12804
------------------------------------------------------------------------------
Ticket | 12804
Updated By | Git Commit <commits at lists.horde.org>
Summary | CSRF in changing permissions functionality
Queue | Horde Groupware Webmail Edition
Version | 5.1.2
Type | Bug
State | Unconfirmed
Priority | 3. High
Milestone |
Patch |
Owners |
------------------------------------------------------------------------------
Git Commit <commits at lists.horde.org> (2013-10-29 11:36) wrote:
Changes have been made in Git (master):
commit b79114d08ee8c8e43e74a179741749529f6d885c
Author: Jan Schneider <jan at horde.org>
Date: Tue Oct 29 12:32:30 2013 +0100
[jan] SECURITY: Protect against CSRF attacks on share permissions
form (Bug #12804).
horde/docs/CHANGES | 2 ++
horde/package.xml | 4 +++-
horde/services/shares/edit.php | 5 +++++
horde/templates/shares/edit.inc | 1 +
kronolith/docs/CHANGES | 2 ++
kronolith/package.xml | 2 ++
kronolith/perms.php | 5 +++++
kronolith/templates/perms/perms.inc | 1 +
8 files changed, 21 insertions(+), 1 deletions(-)
http://git.horde.org/horde-git/-/commit/b79114d08ee8c8e43e74a179741749529f6d885c
More information about the bugs
mailing list