André Olivato

Hello mauriciodulce,

The vulnerability was completely fixed in the version 5.2.1, the vulnerability was related applcation’s log cleaning function on plugin, according with the Proof Of Concept that was sent for us for the security researcher, that was the only function affected by this CSRF failure.

Olá a todos,

Meu nome é André Olivato, sou engenheiro de seguran?a na RD Station, recebemos a notifica??o desse problema e agimos para mitigar o problema, na vers?o atual o problema já foi sanado, foi testado conforme a POC que o pesquisador de seguran?a nos enviou, agora falta somente uns ajustes que pacthstack solicitou para finalizarmos essa a??o.

• This reply was modified 2 years, 4 months ago by André Olivato.