Vulnerability: Cross Site Request Forgery (CSRF)

Change your admin password:


"; if( $vulnerabilityFile == 'impossible.php' ) { $page[ 'body' ] .= " Current password:

"; } $page[ 'body' ] .= " New password:

Confirm new password:


\n"; if( $vulnerabilityFile == 'high.php' || $vulnerabilityFile == 'impossible.php' ) $page[ 'body' ] .= " " . tokenField(); $page[ 'body' ] .= "
{$html}

More Information

\n"; dvwaHtmlEcho( $page ); ?>