Wangmarket Cross-Site Request Forgery Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in Wangmarket versions 4.10 prior to 5.0. The issue resides in the AgencyUserController component, allowing attackers to manipulate user actions without their consent.

Impact

Exploitation of this vulnerability allows for unauthorized actions to be performed on behalf of users, potentially leading to unauthorized changes in user data or settings.

Reproduction

To reproduce this vulnerability, navigate to the sub-agent section and add a new sub-agent. Send the request to Burp Suite's CSRF generator. After generating the CSRF payload, host it on an HTTP server using Python. When the administrator clicks on the crafted link, the CSRF attack is executed, successfully adding the user. This vulnerability can also be reproduced by exploiting the password modification feature, which lacks proper validation of the old password. After generating a proof of concept in Burp Suite, the password can be changed successfully.