This website requires JavaScript.
Explore
Help
Sign In
whx
/
killchain-compendium
Watch
1
Star
0
Fork
You've already forked killchain-compendium
0
Code
Issues
Pull Requests
Projects
Releases
Wiki
Activity
fddb815ab2
killchain-compendium
/
Exploits
/
Web
/
CSRF.md
267 B
Raw
Blame
History
CSRF
Protection
May be a hidden field with an encoded value
<
input
type
=
"hidden"
name
=
"csrf_protect"
value
=
"eyJk..n0="
>
This field need to be removed in order to do some csrf shenanigans
Decode the value to reproduce some valid content.