Exploiting CSRF as a Privilege escalation vulnerability



· CSRF in GET Requests

· CSRF in POST Requests

Exploit CSRF with Automated POC

Preventive Measures /Mitigation


CSRF is an attack that forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated. With the help of social engineering (like sending a link via email/chat), an attacker may force the users of a…