de/d50/test__csrf_8php_source.html

<?php

//define("NOLOGIN",1);    // This means this output page does not require to be logged.

//if (!defined('NOREQUIREUSER'))  define('NOREQUIREUSER', '1');

//if (!defined('NOREQUIREDB'))    define('NOREQUIREDB', '1');

if (!defined('NOREQUIRESOC')) {

  define('NOREQUIRESOC', '1');

}

//if (!defined('NOREQUIRETRAN'))  define('NOREQUIRETRAN', '1');

if (!defined('NOSTYLECHECK')) {

  define('NOSTYLECHECK', '1'); // Do not check style html tag into posted data

}

//if (!defined('NOREQUIREMENU'))  define('NOREQUIREMENU', '1'); // If there is no need to load and show top and left menu

//if (!defined('NOREQUIREHTML'))  define('NOREQUIREHTML', '1'); // If we don't need to load the html.form.class.php

//if (!defined('NOREQUIREAJAX'))  define('NOREQUIREAJAX', '1'); // Do not load ajax.lib.php library

if (!defined("NOLOGIN")) {

  define("NOLOGIN", '1'); // If this page is public (can be called outside logged session)

}


// Load Dolibarr environment

require '../../main.inc.php';

// Security

if (!empty($dolibarr_main_prod) || empty($dolibarr_main_test)) {

  accessforbidden();

}


/*

 * View

 */


header("Content-type: text/html; charset=UTF8");


// Security options

header("X-Content-Type-Options: nosniff"); // With the nosniff option, if the server says the content is text/html, the browser will render it as text/html (note that most browsers now force this option to on)

header("X-Frame-Options: SAMEORIGIN"); // Frames allowed only if on same domain (stop some XSS attacks)

?>


This is a form to test if a CSRF exists into a Dolibarr page.<br>

<br>

- Change url to send request to into this file (URL to a hard coded page on a server B)<br>

- Open this form into a virtual server A.<br>

- Send the request to the virtual server B by clicking submit.<br>

- Check that Anticsrf protection is triggered.<br>


<br>

<?php

  $urltosendrequest = "http://127.0.0.1/dolibarr/htdocs/user/group/card.php";

  print 'urltosendrequest = '.$urltosendrequest.'<br><br>';

?>


Test post

<form method="POST" action="<?php echo $urltosendrequest; ?>" target="_blank">

<!-- <input type="hidden" name="token" value="123456789"> -->

<input type="text" name="action" value="add">

<input type="text" name="nom" value="New group test">

<input type="submit" name="submit" value="Submit">

</form>


Test logout

<html>

  <body>

  <script>history.pushState('', '', '/')</script>

  <form action="http://localhostgit/dolibarr_dev/htdocs/user/logout.php">

    <input type="submit" value="Submit request" />

  </form>

  <script>

    document.forms[0].submit();

  </script>

  </body>

</html>

type
if(preg_match('/(crypted|dolcrypt):/i', $dolibarr_main_db_pass)||!empty($dolibarr_main_db_encrypted_pass)) $conf db type
'integer', 'integer:ObjectClass:PathToClass[:AddCreateButtonOrNot[:Filter[:Sortfield]]]',...
Definition repair.php:125

name
$conf db name
Only used if Module[ID]Name translation string is not found.
Definition repair.php:128

accessforbidden
accessforbidden($message='', $printheader=1, $printfooter=1, $showonlymessage=0, $params=null)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1358