alanbarrett
commented
8 years ago Because there is one other GET which is a more substantial risk, I will fix both as part of https://github.com/TheRosettaFoundation/SOLAS-Match/issues/1169
Alan.Closed alanbarrett closed 8 years ago
alanbarrett
commented
8 years ago Because there is one other GET which is a more substantial risk, I will fix both as part of https://github.com/TheRosettaFoundation/SOLAS-Match/issues/1169
Alan.
ui/templating/templates/tag/tag.tpl sets a tag subscription via a get mechanism with might potentially be subject to CSRF attack. However, since this is not too dangerous a result (changing a tag subscription), I am going to ignore.