Lucene search
GoogleOSV:GHSA-9PR6-GRF4-X2FRHistoryJan 29, 2018 - 3:45 p.m.
Omniauth allows POST parameters to be stored in session
2018-01-2915:45:28
Google
osv.dev
8
EPSS
0.002
Percentile
55.8%
In strategy.rb in OmniAuth before 1.3.2, the authenticity_token value is improperly protected because POST (in addition to GET) parameters are stored in the session and become available in the environment of the callback phase.
References
bugs.debian.org/888523
github.com/omniauth/omniauth
github.com/omniauth/omniauth/pull/867
github.com/omniauth/omniauth/pull/867/commits/71866c5264122e196847a3980c43051446a03e9b
github.com/rubysec/ruby-advisory-db/blob/master/gems/omniauth/CVE-2017-18076.yml
nvd.nist.gov/vuln/detail/CVE-2017-18076
www.debian.org/security/2018/dsa-4109
Related
osv
osv
CVE-2017-18076
2018-01-26 19:29:00
ruby-omniauth - security update
2018-02-09 00:00:00
cve
cve
CVE-2017-18076
2018-01-26 19:29:00
nessus
nessus
Debian DSA-4109-1 : ruby-omniauth - security update
2018-02-12 00:00:00
debian
debian
[SECURITY] [DSA 4109-1] ruby-omniauth security update
2018-02-10 02:35:38
[SECURITY] [DSA 4109-1] ruby-omniauth security update
2018-02-10 02:35:38
veracode
veracode
Cross-Site Request Forgery (CSRF) Via Leakage Of Authenticity Token
2017-01-26 01:44:37
debiancve
debiancve
CVE-2017-18076
2018-01-26 19:29:00
ubuntucve
ubuntucve
CVE-2017-18076
2018-01-26 00:00:00
prion
prion
Session fixation
2018-01-26 19:29:00
openvas
openvas
Debian: Security Advisory (DSA-4109-1)
2018-02-08 00:00:00
cvelist
cvelist
CVE-2017-18076
2018-01-26 19:00:00
github
github
Omniauth allows POST parameters to be stored in session
2018-01-29 15:45:28
nvd
nvd
CVE-2017-18076
2018-01-26 19:29:00
rubygems
rubygems
omniauth leaks authenticity token in callback params
2017-01-10 21:00:00