Last modified: 2006-02-22 21:10:14 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T6083, the corresponding Phabricator task for complete and up-to-date bug report information.
Bug 4083 - Special:Validation doesn't check wpEditToken
Special:Validation doesn't check wpEditToken
Status: RESOLVED INVALID
Product: MediaWiki
Classification: Unclassified
Special pages (Other open bugs)
unspecified
All All
: Normal critical (vote)
: ---
Assigned To: Nobody - You can work on this!
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2005-11-26 01:20 UTC by David Remahl
Modified: 2006-02-22 21:10 UTC (History)
1 user (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---


Attachments

Description David Remahl 2005-11-26 01:20:12 UTC
Parts of the validation mechanism is restricted to bureaucrats. Several parts of the facility do not check for a valid 
wpEditToken, making it vulnerable to cross-site request forgery (CSRF). Basically, by tricking a privileged user into 
clicking on a link or submitting a malicious form, someone could for example change the set of topics.
Comment 1 Antoine "hashar" Musso (WMF) 2006-01-08 19:16:32 UTC
Added a token in HEAD. Not sure if it's worthfull as it seems
the page from Special pages :(
Comment 2 Rob Church 2006-02-22 21:10:14 UTC
Referenced special page has been removed from CVS; the validation feature as
described is no longer present.

Note You need to log in before you can comment on or make changes to this bug.


Navigation
Links