Opened 4 years ago

Closed 4 years ago

#20332 closed Bug (duplicate)

You Might Be Logged Out If

Reported by: csrf.django@… Owned by: nobody
Component: CSRF Version: master
Severity: Normal Keywords: csrf, logout, authentication
Cc: Triage Stage: Unreviewed
Has patch: no Needs documentation: no
Needs tests: no Patch needs improvement: no
Easy pickings: no UI/UX: no

Description (last modified by Alex Gaynor)

You might be logged out...

Let's require POST to logout.

Change History (4)

comment:1 Changed 4 years ago by csrf.django@…

Type: UncategorizedBug
Version: 1.5master

comment:2 Changed 4 years ago by Alex Gaynor

Description: modified (diff)

Edited to remove CSRF attack.

comment:3 Changed 4 years ago by Donald Stufft

In the future please err on the side of caution and report any potential security issues to security@… (More details on responsibly disclosing security issues here).

comment:4 Changed 4 years ago by Paul McMillan

Resolution: duplicate
Status: newclosed

Closing this as a duplicate of

Note: See TracTickets for help on using tickets.
Back to Top