Zhenfeng13 My-BBS Cross-Site Request Forgery Vulnerability

A cross-site request forgery (CSRF) vulnerability has been identified in Zhenfeng13 My-BBS version 1.0. The issue arises because the application does not properly implement CSRF protection on the 'updateUserInfo' interface. This lack of protection allows attackers to create malicious pages that can trick logged-in users into unintentionally modifying their user data. The vulnerability can be exploited remotely, without requiring authentication, but does need user interaction.

Impact

Exploitation of this vulnerability could lead to unauthorized changes in user information, as the lack of CSRF protection allows for manipulation of user data without consent.

Reproduction

To reproduce this vulnerability, log into the application and navigate to a page where the 'updateUserInfo' interface can be accessed. Once there, create a malicious page that sends a request to the 'updateUserInfo' endpoint, modifying user data. This can be done by capturing the request data from a legitimate update, such as a username change, and then replaying it through the malicious page. When the crafted page is loaded by the victim, the request will be sent to the server, resulting in an unauthorized data modification.