Cybersecurity Solutions and Support Services

    BambooInvoice 1.0.4 CSRF

    BambooInvoice 1.0.4 is affected by a Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially crafted HTML page.

    Accounts page:





    Malicious page:





    The result:



    © 2020 sevenlayers.com