Name is required.
Email address is required.
Invalid email address
Answer is required.
Exceeding max length of 5KB

any way to bypass preflighted XHR request in a CSRF attack?

zonduu Dec 09, 2019 11:20AM UTC


i found a website where they have as a CSRF protection CORS and a short custom header (without token - just a header that is for all users). i found a way to bypass the CORS protection but when trying to reproduce the vulnerability i need to add the custom header too.

The header is like --> something: v2

So it doesn't have a token or anything, but when adding it in the XHR PoC generated by burp suite pro i get the request preflighted and going as OPTIONS. is there any way to bypass this?

I think there is a way because if not, all websites should add a small custom header in all requests to be protected against CSRF.

Mike Eaton Dec 10, 2019 10:42AM UTC Support Center agent

Hi, Could you clarify if you are asking if there is any way to prevent the Preflight Request when submitting the XHR PoC from the browser?

Post Your public answer

Your name
Your email address