Skip to content

Team scope authorization bypass when Post/Put request with :team_name in body, allows HTTP parameter pollution

Moderate severity GitHub Reviewed Published Oct 19, 2022 in concourse/concourse • Updated Apr 16, 2025
0 Open 0 Closed
Type
Filter by repository type
All
Public
Private
Internal
Sort
Sort by
Newest
Oldest

No open alerts for this advisory

Give feedback on Dependabot alerts