Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Users can access /webtop/customadmin urls directly

Description

URLs like `/webtop/customadmin/utilities/email.cfm` can be accessed directly from the browser, bypassing FarCry's webtop security.

Environment

None

Activity

Blair McKenzie 
February 17, 2020 at 5:05 AM

This access is now blocked using an Application.cfc. Files under /webtop/customadmin/ can now not be accessed directly from the browser.

Fixed

Details

Assignee

Reporter

Components

Fix versions

Priority

Created February 17, 2020 at 5:02 AM
Updated February 17, 2020 at 5:05 AM
Resolved February 17, 2020 at 5:05 AM