Exploiting CSRF as a Privilege escalation vulnerability

Index

Description

· CSRF in GET Requests

· CSRF in POST Requests

Exploit CSRF with Automated POC

Preventive Measures /Mitigation

Description

CSRF is an attack that forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated. With the help of social engineering (like sending a link via email/chat), an attacker may force the users of a…

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store