• canyonknight's avatar
    Implement token system to fix CSRF vulnerabilities · 2c93f0a9
    canyonknight authored
    
    
    Specially crafted pages can force authenticated users to unknowingly perform
    actions on the AUR website despite being on an attacker's website. This
    cross-site request forgery (CSRF) vulnerability applies to all POST data on
    the AUR.
    
    Implement a token system using a double submit cookie. Have a hidden form
    value on every page containing POST forms. Use the newly added check_token() to
    verify the token sent via POST matches the "AURSID" cookie value. Random
    nature of the token limits potential for CSRF.
    Signed-off-by: default avatarcanyonknight <canyonknight@gmail.com>
    Signed-off-by: default avatarLukas Fleischer <archlinux@cryptocrack.de>
    2c93f0a9
pkg_search_results.php 6.24 KB