Cross-site Request Forgery (CSRF) Affecting umbracocms Open this link in a new tab package, versions [7.3.0,7.4.0-beta2)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
18 Apr 2019
26 Nov 2015
How to fix?
Upgrade UmbracoCms to version 7.4.0-beta2 or higher.
UmbracoCms is a package that installs Umbraco Cms in your Visual Studio ASP.NET project.
Affected versions of this package are vulnerable to Cross-site Request Forgery (CSRF) via the ajax headers.