Hi there,

Recently we just did a penetration testing on a Drupal Site (Version 9.5.5) PHP (Version 8.1.14) , One of the vulnerabilities that the team had found is The Logout is done via GET-Request. From the report they suggested the implications/recommendations that could be done.

Recommendation:
Logout-Calls should always be done via POST-Requests.

Description
During the analysis it could be determined that the logout request to the web server is performed using a GET request. This means that an attacker can place a link to the logout URL anywhere on the Internet, and the user is automatically logged out when visiting this third-party website.

Was wondering if this could be solved or is there anything that has already been done or being missed.

Thank you for your help.

Comments

mohithasmukh created an issue. See original summary.

catch’s picture

catch
he/him
Primary language English
commented
Issue summary: View changes
Status: Active » Closed (duplicate)
Related issues: +#144538: User logout is vulnerable to CSRF

Duplicate of #144538: User logout is vulnerable to CSRF