A vulnerability exists in PublicCMS V4.0.202204.d and below, Cross-site request forgery(CSRF)
h18192h opened this issue · 1 comments
PublicCMS V4.0.202204.d has a vulnerability known as Cross-Site Request Forgery (CSRF). Located in the background--> maintenance--> user management--> increase users. The vulnerability could lead to the addition of administrator account management owner content or the addition of department head account management department owner content
1.Enter the background--> maintenance--> user management--> increase users
2.Simulates the request to increase the number of users and constructs a payload
The figure above shows the constructed payload, adding an administrator through CSRF implementation, the account is "TestUser", the password is "test", and the user name is "CSRFTEST"
3.The browser opens the file
Refresh the background user management page:
Test whether the newly added administrator can log in
Login successful!
You just copied a copy of the form for you by the system. You can't build the form of other users, and other users can't build this form as your identity.