silverstripe/graphql Cross-Site Request Forgery vulnerability

silverstripe/graphql Cross-Site Request Forgery vulnerability

The GraphQL controller lacked any CSRF protection, meaning authenticated users could be forced or tricked into visiting a URL that would send a …

 

Read More