Exploiting CSRF as a Privilege escalation vulnerability

Index

Description

· CSRF in GET Requests

· CSRF in POST Requests

Exploit CSRF with Automated POC

Preventive Measures /Mitigation

Description

CSRF is an attack that forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated. With the help of social engineering (like sending a link via email/chat), an attacker may force the users of a…