https://blog.jamesotten.com/tags/csrf/ Recent content in Csrf on Application Security Blog Hugo -- gohugo.io en-us &copy; 2018 James Otten. &nbsp;All rights reserved. Mon, 14 May 2018 00:00:00 +0000 https://blog.jamesotten.com/post/buildmaster-xslt-rce/ Mon, 14 May 2018 00:00:00 +0000 https://blog.jamesotten.com/post/buildmaster-xslt-rce/ <p>In October of 2017 I discovered a vulnerability in <a href="https://inedo.com/buildmaster">Inedo BuildMaster</a> 5.8.1 related to the use of <a href="https://inedo.com/support/documentation/buildmaster/modeling-applications/configuration-files">configuration file templates</a> which allowed for RCE. This vulnerability could be exploited by an authenticated user directly, or by exploiting multiple CSRF vulnerabilities without the user&rsquo;s knowledge in some cases. </p>