Lucene search
Hdvinnie6EF21E34-F6D9-445A-B657-375C53DC2B43HistoryOct 27, 2021 - 6:18 a.m.
Cross-Site Request Forgery (CSRF) in area17/twill
2021-10-2706:18:55
hdvinnie
www.huntr.dev
8
csrf
area17/twill
logout
vulnerability
post
edge
firefox
chrome
safari
bug bounty
EPSS
0.001
Percentile
31.0%
Description
Attacker is able to logout a user if a logged in user visits attacker website.
Impact
This vulnerability is capable of forging user to unintentional logout.
Test
Tested on Edge, firefox, chrome and safari.
Fix
You should use POST instead of GET.
To expand:
One way GET could be abused here is that a person (competitor perhaps:) placed an image tag with src=“<your logout link>” ANYWHERE on the internet, and if a user of your site stumbles upon that page, he will be unknowingly logged out.
This is why it should be a POST with a @csrf token.
While this cannot harm a users account it can be a great annoyance.
Related
cnvd
cnvd
Twill Cross-Site Request Forgery Vulnerability
2021-11-16 00:00:00
osv
osv
twill is vulnerable to Cross-Site Request Forgery (CSRF)
2021-11-15 23:19:26
CVE-2021-3932
2021-11-13 09:15:07
cvelist
cvelist
CVE-2021-3932 Cross-Site Request Forgery (CSRF) in area17/twill
2021-11-13 08:45:10
nvd
nvd
CVE-2021-3932
2021-11-13 09:15:07
github
github
twill is vulnerable to Cross-Site Request Forgery (CSRF)
2021-11-15 23:19:26
veracode
veracode
Cross-site Request Forgery (CSRF)
2021-11-15 03:45:29
gitlab
gitlab
Cross-Site Request Forgery (CSRF)
2021-11-13 00:00:00
cve
cve
CVE-2021-3932
2021-11-13 09:15:07
prion
prion
Cross site request forgery (csrf)
2021-11-13 09:15:00