Skip to content

rkatogit/cve-2019-9787_csrf_poc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

nginx

nginx

 
 

README.md

README.md

 
 

docker-compose.yml

docker-compose.yml

 
 

Repository files navigation

CVE-2019-9787 CSRF PoC

Overview

PoC of CVE-2019-9787 CSRF
WordPress Version 5.0
refference

Do not use this except for test purpose.

Installation

$ docker-compose up -d
  1. access http://localhost:8080/ and install WordPress. you only have to create WP admin account.
  2. access http://localhost:8080/?p=1#comments as a visitor, and post comment like "csrf site: http://localhost/".
    comment ex

Test

click the link posted at 2.
comment ex

you'll see the comment "csrf success" is posted by user you currently logged in.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

2 stars

Watchers

0 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages