form submitted via ajax not sent by arachni

bernhard.schelling's Avatar

bernhard.schelling

27 Jun, 2017 09:55 PM

hi,

i have a loginform on the startpage of my site (i would like to give the url on request in a private message because its not online yet and the customer is really picky)

the element that triggers the login is a plain submit button but the action of the form in the sourcecode is empty since the submit handler gets cancelled by javascript and a login request is made via ajax.
if the login request is successfull the page gets redirected via javascript.

from what i see in the server logs the post requests only go to the the page itself (since the action in the form is empty) and no ajax request is made to the right endpoint.
should arachni be able to submit forms via ajax? how could i find out whats going wrong?

thanks for hints
bernhard

  1. Support Staff 1 Posted by Tasos Laskos on 28 Jun, 2017 02:50 PM

    Tasos Laskos's Avatar

    It's hard to tell without access, you can send me the details in private at: tasos.laskos[at]arachni-scanner.com

    Btw, are you auditing the form or are you trying to login via one of the plugins?
    Also, knowing the scan config you used will also be helpful.

  2. 2 Posted by bernhard.schell... on 28 Jun, 2017 03:42 PM

    bernhard.schelling's Avatar

    thanks! I've sent the details and config in a private message

  3. Support Staff 3 Posted by Tasos Laskos on 04 Jul, 2017 01:31 PM

    Tasos Laskos's Avatar

    Discussion moved to e-mail.

  4. Tasos Laskos closed this discussion on 04 Jul, 2017 01:31 PM.

Comments are currently closed for this discussion. You can start a new one.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac