Search the Community
Showing results for tags 'csrf'.
-
LazyCSRF LazyCSRF is a more useful CSRF PoC generator that runs on Burp Suite. Motivation Burp Suite is an intercepting HTTP Proxy, and it is the defacto tool for performing web application security testing. The feature of Burp Suite that I like the most is Generate CSRF PoC. However, it does not support JSON parameters. It also uses the <form>, so it cannot send PUT/DELETE requests. In addition, multibyte characters that can be displayed in Burp Suite itself are often garbled in the generated CSRF PoC. Those were the motivations for creating LazyCSRF. Features Support JSON parameter (like a request to the API) Support PUT/DELETE (only work with CORS enabled with an unrestrictive policy) Support displaying multibyte characters (like Japanese) Generating CSRF PoC with Burp Suite Community Edition (of course, it also works in Professional Edition) The difference in the display of multibyte characters The following image shows the difference in the display of multibyte characters between Burp’s CSRF PoC generator and LazyCSRF. LazyCSRF can generate PoC for CSRF without garbling multibyte characters. This is only the case if the characters are not garbled on Burp Suite. [hide][Hidden Content]]
-
XSRF Probe XSRF Probe is an advanced Cross Site Request Forgery Audit Toolkit equipped with Powerful Crawling and Intelligent Token Generation Capabilities. Some Features: Performs several types of checks before declaring an endpoint as vulnerable. Can detect several types of Anti-CSRF tokens in POST requests. Works with a powerful crawler which features continuous crawling and scanning. Out of the box support for custom cookie values and generic headers. Accurate Token-Strength Detection and Analysis using various algorithms. Can generate both normal as well as maliciously exploitable CSRF proof of concepts. Well documented code and highly generalised automated workflow. The user is in control of everything whatever the scanner does. Has a user-friendly interaction environment with full verbose support. Detailed logging system of errors, vulnerabilities, tokens and other stuffs. The Workflow: The typical workflow of this scanner is :- Spiders the target website to find all pages. Finds all types of forms present on the each page. Hunts out hidden as well as visible parameter values. Submits each form with normal tokens & parameter values. Generates random token strings and sets parameter values. Submits each form with the crafted tokens. Finds out if the tokens are sufficiently protected. Generates custom proof of concepts after each successful bug hunt. Changelog v2.1 Some significant changes in this version: XSRFProbe now available as a package (aka can be installed via pip). Added full support of cookies while making requests. Fixed form-type bugs and added email type checks. Tweaked some modules for accuracy in CSRF detections. Major bug fixes removing support for build_opener libraries. Huge code optimizations (cleaning and stuff). [HIDE][Hidden Content]]
-
phpKF version 1.10 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities. View the full article
-
Exploits WordPress FormCraft 2.0 CSRF / Shell Upload
1337day-Exploits posted a topic in Updated Exploits
WordPress version 5.0.4 with FormCraft plugin version 2.0 suffers from a cross site request forgery vulnerability that can be leveraged to perform a shell upload. View the full article -
WordPress WP-DreamworkGallery plugin version 2.3 suffers from cross site request forgery and remote shell upload vulnerabilities. View the full article
-
- wordpress
- wp-dreamworkgallery
- (and 4 more)
-
Joomla ModPPCSimpleSpotLight module versions 1.2 and 3.0 suffer from cross site request forgery and remote shell upload vulnerabilities. View the full article
-
- joomla
- modppcsimplespotlight
- (and 5 more)
-
Joomla AdsManager component version 3.2.0 suffers from cross site request forgery, database disclosure, remote file inclusion, and remote SQL injection vulnerabilities. View the full article
-
- joomla
- adsmanager
-
(and 6 more)
Tagged with:
-
Leica Geosystems GR10/GR25/GR30/GR50 GNSS version 4.30.063 suffers from a cross site request forgery vulnerability. View the full article
-
- leica
- geosystems
-
(and 4 more)
Tagged with: