PrimeTek
CSRF attacks problem on JSF and Primefaces #4624
Replies: 3 comments 1 reply
-
|
If you can point me to a PrimeFaces issue in GitHub, i can check if it was backported. Usually we backport all security related tickets. |
Beta Was this translation helpful? Give feedback.
-
|
Thank you. My question was meant to be general too. A security check found the aforementioned flaw. It's important to me that all security flaws are also fixed in the LTS version. Otherwise, the LTS version isn't very useful. |
Beta Was this translation helpful? Give feedback.
-
|
As i said, we backport all security related issues. |
Beta Was this translation helpful? Give feedback.
-
|
Thank you. |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
According to https://stackoverflow.com/questions/78901025/csrf-attacks-problem-on-jsf-and-primefaces, there is a security issue in PrimeFaces (prior to version 14.0.4).
User Melloware wrote that this will be fixed in PrimeFaces 14.0.4. Will this also be fixed in the LTS versions (e.g., PrimeFaces 12-LTS and 13-LTS)?
Beta Was this translation helpful? Give feedback.
All reactions