[Archivesspace_Users_Group] CSRF

Kimberli Kelmor kk1210 at georgetown.edu
Wed Mar 4 13:36:06 EST 2020

Greetings all,

Our campus IT department just sent me a report from Detectify.com
indicating that our archivesspace server has several CSRF vulnerabilities.
We are running v2.7.0 I read through the release notes, searched this list,
jira, and github and haven't found anything recent.

Has anybody else come across this issue?

Many thanks,
Kimberli M. Kelmor
Head of Law Library Technology
Georgetown University Law Library
kk1210 at georgetown.edu
*Law Library colleagues: to keep email from consuming me, I'll only be
checking it at set points during the day. If you have an urgent technology
concern, please use lawlibraryers at georgetown.edu
<lawlibraryers at georgetown.edu>. If you need to contact me personally please
use slack. Thanks!*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lyralists.lyrasis.org/pipermail/archivesspace_users_group/attachments/20200304/46bb247a/attachment.html>

More information about the Archivesspace_Users_Group mailing list