[#18748] - function login() in /components/com_users/controllers/user.php checks token. Why?
- Closed
- 4 Feb 2018
- Medium
- Build: staging
- # 18748
from joomla 1.5 and for 3.8.1 i have problems under cache
100% situations when users goto cached login page and they have error "Invalid token"
"guest" token in 95% of sites what i was develop not needed
So when page cached - site return wrong token - token of another "guest"
and when they try to login the result is "Invalid token" :(
i dont understand what security vulnerability can makes in method "login()" without checkToken?
joomla-cms-bot
- | Labels |
Added:
?
|
||
| Title |
|
||||||
| Category | ⇒ | com_users |
| Status | New | ⇒ | Information Required |
no i don`t have
do you think checkToken() returns true when checks token of another guest with yours guest session?
@tonypartridge any Answer on above Question or is this for Forum?
This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/18748.
I think it’s more of a coding issues. checkToken only returns true for the current logged in User if the token is theirs.
@tonypartridge thanks for Info.
| Status | Information Required | ⇒ | Discussion |
brianteeman
- | Status | Discussion | ⇒ | Closed |
| Closed_Date | 0000-00-00 00:00:00 | ⇒ | 2018-02-04 14:38:09 |
| Closed_By | ⇒ | brianteeman |
Do you have a custom module or component processing the login?
This shouldn’t be a problem with the core.