漏洞
Tokens generated with Portal for ArcGIS and the referrer URL are valid for requests where the referrer is omitted in the Header request.
| 漏洞 ID 编号 | BUG-000154453 |
|---|---|
| 已提交 | December 14, 2022 |
| 上次修改时间 | October 4, 2024 |
| 适用范围 | Portal for ArcGIS |
| 找到的版本 | 10.9.1 |
| 操作系统 | Windows OS |
| 操作系统版本 | 10.0 64 Bit |
| 状态 | As Designed |
附加信息
This is the expected behavior of the software. There are situations where applications need to open pages where the browser does not send a referrer, and in those situations, users expect tokens to work.重现步骤
漏洞 ID: BUG-000154453
软件:
- Portal for ArcGIS
当漏洞状态发生变化时获得通知
发现关于本主题的更多内容
搜索相关信息
查找与此主题相关的培训
探索想法并提供反馈
获取来自 ArcGIS 专家的帮助
下载 Esri 支持应用程序