Solving OAuth2: Authorization Server CSRF

This exercise covers the exploitation of a CSRF in the Authorization server

PRO

content

Easy difficulty

Between 1 and 2 hours

average

completion

time

858

completed

this exercise

Common Mistakes:

The URL visited by the victim changes every few hours, make sure the URL in your payload targets the website the victim is currently visiting

Online access to this exercise is only available with PentesterLab PRO

Learn more about PentesterLab PRO