提交 #857924: django-tastypie 0.15.1 at commit 03c4746f0a0f88628be5264bc8d4a19a0529b2f4 CWE-598 Use of GET Request Method With Sensitive Query Strings信息

标题django-tastypie 0.15.1 at commit 03c4746f0a0f88628be5264bc8d4a19a0529b2f4 CWE-598 Use of GET Request Method With Sensitive Query Strings
描述django-tastypie 0.15.1 contains a conditional credential exposure issue in ApiKeyAuthentication. If Authorization header parsing fails, extract_credentials() falls back to reading username and api_key from request.GET or request.POST, and is_authenticated() accepts those values as API key credentials. Applications must use ApiKeyAuthentication and clients must pass credentials through query or form parameters for this to be exploitable. In that configuration, API keys can be captured in web server logs, reverse proxy logs, browser history, bookmarks, referrer headers, analytics tools, and shared URLs. An attacker who obtains those logs or URLs can replay the API key as the victim user. Remediation should remove GET/POST credential fallback or require explicit opt-in, and should prefer Authorization header authentication.
来源⚠️ https://github.com/django-tastypie/django-tastypie/issues/1700
用户
 Galaxyn (UID 98388)
提交2026-06-13 12時55分 (1 月前)
管理2026-07-18 10時27分 (1 month later)
状态已接受
VulDB条目380023 [django-tastypie 直到 0.15.1 authentication.py ApiKeyAuthentication 信息公开]
积分20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!