Security[CSRF]: thold.php use the value of the "Referer" header without validation

[ddb4github]

Describe the bug It may be possible to steal or manipulate customer session and cookies, which might be used toimpersonate a legitimate user, allowing the hacker to view or alter user records, and to performtransactions as that use

Expected behavior Validate the value of the "Referer" header, and use a one-time-nonce for each submit

[netniV]

Can you give some more details on what you are meaning with this? Email, page, url ?

[TheWitness]

We pre-escape the REFERER, but I've found that it was double escaped. Fixing now.