Join GitHub today
CSRF Vulnerability #53
RazorCMS version: 3.4.8
Vulnerability Type: Cross-Site Request Forgery(CSRF)
Vulnerability Description: CSRF is an attack which forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated. With a little help of social engineering (like sending a link via email/chat), an attacker may trick the users of a web application into executing actions of the attacker's choosing. If the targeted end user is a normal user, a successful CSRF attack can compromise sensitive data. If the targeted end user is the administrator account, this type of attack can compromise the entire web application.
STEPS TO REPRODUCE:
Recommendation: A prevention measure could be the implementation and inclusion of tokens in a user (current) session. Tokens are long cryptographic values that are difficult to guess. These will be generated when a user session begins and will be associated with this particular user session. This challenge token will be included in each request, which will be used by the server side to verify the legitimacy of the end-user request.