Play framework vulnerability could lead to CSRF protection bypass

guest · Aug 24, 2020

Play framework vulnerability could lead to CSRF protection bypass
Now-patched issue impacts certain configurations of web app framework
August 24, 2020
https://portswigger.net/daily-swig/play-framework-vulnerability-could-lead-to-csrf-protection-bypass

A vulnerability in the Play framework can allow a complete cross-site request forgery (CSRF) protection bypass, researchers have warned.

Play is a framework for building web applications with Java and Scala. It is used by companies including LinkedIn, Verizon, and Walmart.
The open source framework ships with a custom anti-CSRF mechanism, which blocks Content-Type headers to prevent attacks.

However, researchers discovered they were able to bypass this functionality by sending malformed Content-Type headers to a target web app.
Click to expand...

Press Play
The issue was discovered by offensive security researchers from Doyensec during a client engagement, a blog post details.

The issue only affects Play applications that use the anti-CSRF filter and have configured a blocklist of Content-Types for CSRF protection.
This blocklist is not present in Play’s default configuration, Stella said.
Click to expand...

Log in or Sign up

Play framework vulnerability could lead to CSRF protection bypass

guest Guest

Log in or Sign up

Play framework vulnerability could lead to CSRF protection bypass

guest Guest

Useful Searches