2 matches found
Decidim security breach
Decidim is a participatory democracy framework written in Ruby on Rails. A security vulnerability exists in Decidim versions 0.23.0 through 0.27.4, which stems from a possible cross-site request forgery attack in the questionnaire templates preview...
PT-2024-13465 · Decidim · Decidim
Name of the Vulnerable Software and Affected Versions: Decidim versions 0.23.0 through 0.27.4 Decidim versions 0.28.0 before the fix Description: Decidim is a participatory democracy framework. The CSRF authenticity token check is disabled for the questionnaire templates preview, which may allow...