Ofcourse.
If the attacker sends the http://evil.me/poc.html to the administrator and the administrator logs in to the library, the password will be forced to change without the administrator's knowledge.
Sure. I, Librarian does not have any CSRF countermeasures. We are working on an entirely new version that has CSRF mitigation. I am afraid we will not be adding CSRF protection to I, Librarian 4.
In general, I, Librarian code is pretty old. It started before PHP5 existed, and Internet was a friendlier place. We decided for a complete rewrite for the fifth generation.
i-librarian/users.php
Line 138 in 9535753
CSRF vulnerability is present here,
It will allow an attacker to force updates the password of the admin whose id is "1".
POC:
The text was updated successfully, but these errors were encountered: