Solving OAuth2: Authorization Server CSRF

This exercise covers the exploitation of a CSRF in the Authorization server

PRO

content

EASY

Difficulty

Between 1 and 2 hours

on average

234

Completed this exercise

Common Mistakes:

The URL visited by the victim changes every few hours, make sure the URL in your payload targets the website the victim is currently visiting

Online access to this exercise is only available with PentesterLab PRO

Learn more about PentesterLab PRO