id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
32562	Broken Authentication  (Insecure CSRF and Session ID)	cpulidomagentrack	nobody	"We have currently carried out security tests on our system developed with Django, our security specialists report a vulnerability to us when a CSRF (Broken Authentication) token is obtained.
 (Insecure CSRF and Session ID)), since if this token is obtained it is possible to reuse it several times allowing brute force attacks. Is it possible to modify the validity of this token or disable it when it is consumed in a post/put request and generate a new token within the session or limited the time valid from the inicial token CSRF ?"	Bug	closed	CSRF	3.1	Normal	invalid		cpulido@…	Unreviewed	0	0	0	0	0	0