AnsweredAssumed Answered

Filemaker Server Advanced 11 + IWP + Cross Site Request Forgery

Question asked by kiwikaty on Jul 9, 2012
Latest reply on Aug 13, 2012 by krolaw

Hi there,

 

A pen test has just been done by our IT department and they have identified that our iwp/cgi file is vunerable to cross-site request forgery that allows the attacker to exchange the method from POST to GET when sending data to the server.

 

I have been unable to locate any information on this vunerability on the net so am at a loss on how I can remedy this?

 

Many thanks for any advice...

Outcomes