Issue 732379 link

Starred by 2 users

Issue metadata

Status:	WontFix
Owner:	----
Closed:	Jun 2017
EstimatedDays:	----
NextAction:	----
OS:	----
Pri:	----
Type:	Bug-Security
allpublic

Security: CSRF in mail.google.com

Reported by jothiswa...@gmail.com, Jun 12 2017

Issue description

VULNERABILITY DETAILS - CSRF in gmail
CSRF vulnerability in mail.google.com. 
1. CSRF token must be reset after gmail login. CSRF token remains same even after login and logout. 
2. CSRF token remains same for both get and post request. It is insecure to pass CSRF token in get request, it is advised to allow CSRF token in get request if and only if we reset on every request.
3. When multiple users login in the same browser, CSRF token remains same irrespective of user.

VERSION
Chrome Version: Any
Operating System: Any

REPRODUCTION CASE
I think description given in the vulnerability is enough, if needed i will demonstrate it.

Comment 1 by elawrence@chromium.org, Jun 12 2017

Status: WontFix (was: Unconfirmed)

Thanks for your note. This is the Google Chrome bug tracker and we cannot address issues found in products other than Chrome.

This page: https://www.google.com/about/appsecurity/reward-program/ explains how to report security vulnerabilities in Google sites and properties and receive bounties. ( The bugs get filed by this wizard: https://goo.gl/vulnz )

Project Member

Comment 2 by sheriffbot@chromium.org, Sep 19 2017

Labels: -Restrict-View-SecurityTeam allpublic

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

►

Issue 732379 link

Issue metadata

Security: CSRF in mail.google.com

Issue description

Comment 1 by elawrence@chromium.org, Jun 12 2017

Comment 1 Deleted

Comment 2 by sheriffbot@chromium.org, Sep 19 2017

Comment 2 Deleted

Sign in to add a comment