https://www.redmine.org/https://www.redmine.org/favicon.ico?16793021292015-06-29T15:58:57ZRedmineRedmine - Patch #20203: The test email action should use POST only (CSRF protection)https://www.redmine.org/issues/20203?journal_id=645512015-06-29T15:58:57ZJean-Philippe Langjp_lang@yahoo.fr
<ul><li><strong>Category</strong> set to <i>Security</i></li><li><strong>Assignee</strong> set to <i>Jean-Philippe Lang</i></li><li><strong>Target version</strong> set to <i>2.6.6</i></li></ul> Redmine - Patch #20203: The test email action should use POST only (CSRF protection)https://www.redmine.org/issues/20203?journal_id=645552015-06-29T16:09:29ZJean-Philippe Langjp_lang@yahoo.fr
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Resolved</i></li></ul><p>Patch committed with an additional change to the functional test, thanks.</p> Redmine - Patch #20203: The test email action should use POST only (CSRF protection)https://www.redmine.org/issues/20203?journal_id=645562015-06-29T16:10:40ZJean-Philippe Langjp_lang@yahoo.fr
<ul><li><strong>Subject</strong> changed from <i>The test email action /admin/test_email should only be accessible with POST to protect it with the CSRF protection system</i> to <i>The test email action should use POST only (CSRF protection)</i></li></ul> Redmine - Patch #20203: The test email action should use POST only (CSRF protection)https://www.redmine.org/issues/20203?journal_id=646622015-07-05T10:30:36ZJean-Philippe Langjp_lang@yahoo.fr
<ul><li><strong>Status</strong> changed from <i>Resolved</i> to <i>Closed</i></li></ul>