ownCloud: apps.owncloud.com: Referer protection Bypassed

2015-10-06T20:41:38
ID H1:92644
Type hackerone
Reporter herlove
Modified 2016-01-02T17:53:07

Description

@herlove has reported a vulnerability within the appstore at apps.owncloud.com allowing an adversary to bypass the HTTP referer based CSRF protection. This issue was caused by an insufficient regular expression which has been patched meanwhile.

On request of the reporter this issue has been disclosed limited and not public. i reported a vulnerability in which attacker was able to bypass referer protection which is commonly used for protecting users from CSRF attacks. This happened due to weak regular expression.