Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CSRF Vulnerability V1.0 #20

Open
zxc7528064 opened this issue Jun 2, 2020 · 1 comment
Open

CSRF Vulnerability V1.0 #20

zxc7528064 opened this issue Jun 2, 2020 · 1 comment

Comments

@zxc7528064
Copy link

zxc7528064 commented Jun 2, 2020

Affected software: Pixelimity CMS

Type of vulnerability: CSRF (Cross-Site Request Forgery)

Version : v1.0

Discovered by: Noth

Author: Noth

Description:
Pixelimity CMS is vulnerable to persistent Cross-Site Request Forgery attacks, which allow malicious users to inject HTML or scripts and forge user permissions to operate .

Vulnerable URL:
http://127.0.0.1/pixelimity-dev/admin/setting.php

Vulnerable parameter:
password

Proof of Concept:

  1. Login as admin .
    1

  2. Locate URL - http://127.0.0.1/pixelimity-dev/admin/setting.php
    2

  3. Use Burpsuite to intercept packets
    3
    Original password : 123456

  4. PoC Payload :
    4
    Later password : 456789

Can success Change Passoword !

Test Video :
https://drive.google.com/file/d/1rKXgv5wBTyBqyC_52LMLGZEpp8OfsaE-/view?usp=sharing

@zxc7528064
Copy link
Author

zxc7528064 commented Jul 27, 2020

Hi Team,

Any updates regarding the patches.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant