2008년 02월 16일
CSRF Basics
CSRF also known as XSRF stands fro cross site request forgery..
Exploiting a website cross site request forgery is the art of making an
administrator or user with enough privileges do something malicious that you want.
For example if i wanted to delete the member called peter..
I knew that the page to delete a user was "admin/deleteuser.php?user=" but i couldnt access it
due to lack of privileges, i could then make a webpage (in any language) that redirected to the page
"admin/deleteuser.php?user=peter", now because im not admin i cant delete the user so i would need to get
an administrator or someone with the correct privilges to do it for me. So i get an administrator to visit my web page
that redirects them to ban the user peter.
I have now used thier privileges for my benefit to delete the user peter, this isnt always taken seriously but could put
your site in high danger.
*** How to protect against CSRF ***
Simpley to protect your website against CSRF all you have to do is check that the user has submited the form or visited
the URL intentionally, to do this just add a confirmation e.g. Do you really want to ban this member, YES / NO.
Hope you learnt the basics of CSRF
Other facts:
CSRF is pronounced "see surf".
Not too long ago a well known open source CMS was exploitable via CSRF on the admin panel allowing hackers to make
admins ban themselvs.
Thanks for reading, xssvgamer
Exploiting a website cross site request forgery is the art of making an
administrator or user with enough privileges do something malicious that you want.
For example if i wanted to delete the member called peter..
I knew that the page to delete a user was "admin/deleteuser.php?user=" but i couldnt access it
due to lack of privileges, i could then make a webpage (in any language) that redirected to the page
"admin/deleteuser.php?user=peter", now because im not admin i cant delete the user so i would need to get
an administrator or someone with the correct privilges to do it for me. So i get an administrator to visit my web page
that redirects them to ban the user peter.
I have now used thier privileges for my benefit to delete the user peter, this isnt always taken seriously but could put
your site in high danger.
*** How to protect against CSRF ***
Simpley to protect your website against CSRF all you have to do is check that the user has submited the form or visited
the URL intentionally, to do this just add a confirmation e.g. Do you really want to ban this member, YES / NO.
Hope you learnt the basics of CSRF
Other facts:
CSRF is pronounced "see surf".
Not too long ago a well known open source CMS was exploitable via CSRF on the admin panel allowing hackers to make
admins ban themselvs.
Thanks for reading, xssvgamer
# by | 2008/02/16 21:08 | →Referenceⅱ | 트랙백
☞ 내 이글루에 이 글과 관련된 글 쓰기 (트랙백 보내기) [도움말]