Description

Your web application's GraphQL implementation accepts non-JSON mutations over GET requests, increasing the risk of Cross-Site Request Forgery (CSRF) attacks. While JSON-based POST requests are generally considered resistant to CSRF, non-JSON GET requests are more susceptible to this type of attacks. GraphQL mutations are operations used to modify data on the server-side in a GraphQL API. While queries are used to request data from a GraphQL server, mutations are used to create, update, or delete data.

Remediation

Use POST for Mutations: Restrict GraphQL mutations to JSON-based POST requests to limit the CSRF attack surface.

References

That single GraphQL issue that you keep missing

Related Vulnerabilities

The POODLE attack (SSLv3 with CBC cipher suites)

WordPress Plugin Polls CP Multiple Vulnerabilities (1.0.8)

WordPress Plugin WordPress Poll Cross-Site Request Forgery (34.05)

WordPress Plugin SMTP Mailer Cross-Site Request Forgery (1.0.6)

HTTP Strict Transport Security (HSTS) Policy Not Enabled

Severity

Medium

Classification

CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N

Tags

Configuration CSRF