All - Release 1.4.0 included improvements to handling of POST methods for credentials. Please update and follow best practices when implementing fineract in production. Thank you to Abiy Atsbha for identifying this issue.
See https://cwiki.apache.org/confluence/display/FINERACT/Apache+Fineract+Security+Report for more information. If you identify a security issue, please email [email protected] .
