Comment 0 for bug 1480329
Revision history for this message
| abdullah (eye-magicme) wrote CSRF bug | #0 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
67d34a1
(Get the code!)
Hi this is Abdullah ,
I found CSRF make user upload files to any group without his know it can be used to attack admins to upload evil files .
PoC :
video
http://
the fix :
check sesskey is valid in (groupfiles.php)
I hope put my name in release note .
Are there a CVE for this bug ?
Thanks
Used mahara least version