OSVDB-119205: Private information access through CSRF

March 3, 2015

A vulnerability in the API can allow an attacker to commit CSRF gaining access to private information.

References

osvdb.org/show/osvdb/119205
spreecommerce.com/blog/security-updates-2015-3-3

Code Behaviors & Features

Detect and mitigate OSVDB-119205 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →