[Archivesspace_Users_Group] CSRF

Kimberli Kelmor kk1210 at georgetown.edu
Wed Mar 4 13:36:06 EST 2020


Greetings all,

Our campus IT department just sent me a report from Detectify.com
indicating that our archivesspace server has several CSRF vulnerabilities.
We are running v2.7.0 I read through the release notes, searched this list,
jira, and github and haven't found anything recent.

Has anybody else come across this issue?

Many thanks,
Kim
_________________________________
Kimberli M. Kelmor
Head of Law Library Technology
Georgetown University Law Library
kk1210 at georgetown.edu
202-662-9158
<http://www.law.georgetown.edu/150>
*Law Library colleagues: to keep email from consuming me, I'll only be
checking it at set points during the day. If you have an urgent technology
concern, please use lawlibraryers at georgetown.edu
<lawlibraryers at georgetown.edu>. If you need to contact me personally please
use slack. Thanks!*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lyralists.lyrasis.org/pipermail/archivesspace_users_group/attachments/20200304/46bb247a/attachment.html>


More information about the Archivesspace_Users_Group mailing list