TSA 2008-12/1

Published by AlexC, Dec 18, 2008

Various CSRF (Cross Site Request Forgeery) exploits have been found, mostly within the Admin CP. These exploits could trick a user into performing various administrative tasks with the possibility of data loss within the website.

Affected versions:
< 2.2.0
Related bug report:
Security #55
Solution:
Upgrade to 2.2.0 or later

Share this!

0 comments for "TSA 2008-12/1"

There are currently no comments.

Leave a comment

Captcha

Security RSS Feed

Keep up to date with the latest TangoCMS Security Announcements with our TSAs RSS Feed.

More about security »

Recent TSA Reports

TSA 2010-03/1
Published by AlexC, Mar 21, 2010
TSA 2009-12/1
Published by AlexC, Dec 14, 2009
TSA 2009-06/1
Published by AlexC, Jun 29, 2009
TSA 2009-02/1
Published by AlexC, Feb 20, 2009
TSA 2008-12/1
Published by AlexC, Dec 18, 2008
TSA 2008-10/1
Published by AlexC, Oct 18, 2008