CVE-2012-5664: access_token Disclosure CSRF

December 26, 2012 (updated January 8, 2013)

Doorkeeper contains a flaw as HTTP requests do not require multiple steps, explicit confirmation, or a unique token when performing certain sensitive actions. By tricking a user into following a specially crafted link, a context-dependent attacker can perform a Cross-Site Request Forgery (CSRF / XSRF) attack causing the victim to disclose their access_token with an arbitrary scope.

References

homakov.blogspot.nl/2014/12/blatant-csrf-in-doorkeeper-most-popular.html
osvdb.org/show/osvdb/116010
github.com/doorkeeper-gem/doorkeeper/blob/master/CHANGELOG.md

Code Behaviors & Features

Detect and mitigate CVE-2012-5664 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →