;)
ConcourseConnect Support
Support
PUBLIC PROFILE
Security Advisories
SA-CORE-2012-001 - ConcourseConnect multiple vulnerabilities
Posted by Concursive Security Team on December 3, 2012 at 10:00am EST
- Advisory ID: CONCOURSECONNECT-SA-CORE-2012-001
- Project: ConcourseConnect
- Version: 2.0.2 and prior versions; 3.0 and 4.0 prior to 2012-11-07
- Date: 2012-12-03
- Security risk: Less critical
- Exploitable from: Interaction by a user is required for this exploit to be successful
- Vulnerability: Cross-site request forgery, script insertion
Sign in to add your comment.