Exploiting CSRF as a Privilege escalation vulnerability
Index
Description
· CSRF in GET Requests
· CSRF in POST Requests
Exploit CSRF with Automated POC
Preventive Measures /Mitigation
Description
CSRF is an attack that forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated. With the help of social engineering (like sending a link via email/chat), an attacker may force the users of a…