| Title | webkul qloapps 1.7.0 Authorization Bypass |
|---|
| Description | The logout functionality in QloApps exposes the CSRF token directly in the URL and allows it to be reused multiple times. This makes the CSRF protection ineffective and introduces multiple risks:
Token exposure via browser history, referrer headers, and logs.
Replay attacks since the token does not expire after first use.
Forced logout attacks, where an attacker can log out users repeatedly without their consent.
Potential authorization bypass if the same flawed CSRF mechanism is applied to sensitive actions like profile changes, checkout, or administrative tasks.
This issue falls under CWE-639 (Authorization Bypass Through User-Controlled Key) and CWE-352 (Cross-Site Request Forgery). |
|---|
| Source | ⚠️ https://github.com/Ryomensukuna13/QloApps-Reusable-CSRF-Token-in-Logout-Functionality/blob/main/README.md |
|---|
| User | Ragavendra Krishna Kumar (UID 89760) |
|---|
| Submission | 09/02/2025 17:40 (9 months ago) |
|---|
| Moderation | 09/20/2025 09:01 (18 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 325114 [Webkul QloApps up to 1.7.0 CSRF Token token authorization] |
|---|
| Points | 20 |
|---|