Wednesday, 21 February 2018

MyBB Forum 1.8.14 Vulnerability: Cross Site Request Forgery(CSRF)

This post is about vulnerability which I found in MyBB Forum and POC's are created under Windows 10 platform.

Exploit Title : MyBB Forum 1.8.14
Exploit Author : Pranav Jagtap
Tested On : Windows 10 64 Bit
LinkedIn : iampranavjagtap
Twitter :pranavH4x0r

CSRF Vulnerability:

Authentication : Required

MyBB Forum is not checking the valid CSRF token so an attacker could able to trick the authenticated user to delete the existing user from the forum.


No comments:

Post a comment