Name of the Vulnerable Software and Affected Versions Software versions prior to 2.4.8 and 1.3.18

Description The issue allows forms secured by SecurityComponent to be submitted to any action without triggering the tampering protection. This could lead to mass assignment issues in applications with multiple POST forms that manipulate the same models.

Recommendations For versions prior to 2.4.8, update to version 2.4.8 or later to resolve the issue. For versions prior to 1.3.18, update to version 1.3.18 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive actions that could be exploited through mass assignment issues until a patch is available.