mirror of
https://gitlab.archlinux.org/archlinux/aurweb.git
synced 2025-02-03 10:43:03 +01:00
2c93f0a98f
Specially crafted pages can force authenticated users to unknowingly perform actions on the AUR website despite being on an attacker's website. This cross-site request forgery (CSRF) vulnerability applies to all POST data on the AUR. Implement a token system using a double submit cookie. Have a hidden form value on every page containing POST forms. Use the newly added check_token() to verify the token sent via POST matches the "AURSID" cookie value. Random nature of the token limits potential for CSRF. Signed-off-by: canyonknight <canyonknight@gmail.com> Signed-off-by: Lukas Fleischer <archlinux@cryptocrack.de> |
||
|---|---|---|
| .. | ||
| stats | ||
| actions_form.php | ||
| footer.php | ||
| header.php | ||
| login_form.php | ||
| pkg_comment_form.php | ||
| pkg_comments.php | ||
| pkg_details.php | ||
| pkg_search_form.php | ||
| pkg_search_results.php | ||
| search_accounts_form.php | ||
| template.phps | ||
| tu_details.php | ||
| tu_list.php | ||