DVWS icon indicating copy to clipboard operation
DVWS copied to clipboard
verified publisher icon interference-security

ChangePassword does not verify session

Open adriendb opened this issue 4 years ago • 1 comments

The change password function in csrf.php does not actually check the username or if a valid session has been established. It always returns 'Password changed successfully.' I would also rename it to cswsh.php as it is Cross-Site WebSocket Hijacking.

adriendb avatar Sep 09 '21 17:09 adriendb

Working on a fix for this. Thanks for raising it. Since the whole application is vulnerable to CSWH, I will skip renaming csrf.php to cswsh.php. I will update this issue when the fix has been pushed to the repository.

interference-security avatar Sep 29 '21 14:09 interference-security