CVE-2021-31762

This exploit demonstrates a CSRF vulnerability in Webmin 1.973 and earlier versions, allowing an attacker to create a malicious HTML form that, when visited by an authenticated user, can modify user settings or create new users without their consent.

This repository contains a functional exploit for CVE-2021-31762, which leverages a CSRF vulnerability in Webmin to create a privileged user and achieve remote command execution. The exploit generates an HTML file that, when visited by an authenticated user, submits a crafted POST request to add a new user with elevated privileges.

This repository contains a functional exploit for CVE-2021-31762, which leverages a CSRF vulnerability in Webmin to create a privileged user and subsequently achieve remote command execution. The exploit generates an HTML file that, when accessed by an authenticated Webmin user, submits a crafted POST request to create a new admin user.