From bde1c768983e575f19a487ca066149a4241c2b71 Mon Sep 17 00:00:00 2001
From: HDVinnie <hdinnovations@protonmail.com>
Date: Thu, 23 Sep 2021 20:19:06 -0400
Subject: [PATCH] security: cross-site request forgery

- huntr bounty
---
 resources/views/Staff/command/index.blade.php | 72 ++++++++++++++-----
 routes/web.php                                | 20 +++---
 2 files changed, 64 insertions(+), 28 deletions(-)

diff --git a/resources/views/Staff/command/index.blade.php b/resources/views/Staff/command/index.blade.php
index 575905bbe8..61ddba58a1 100644
--- a/resources/views/Staff/command/index.blade.php
+++ b/resources/views/Staff/command/index.blade.php
@@ -40,8 +40,12 @@
                             </h3>
                             <h4 class="text-muted">This commands enables maintenance mode while whitelisting only you IP
                                 Address.</h4>
-                            <a href="{{ url('/dashboard/commands/maintance-enable') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/maintance-enable') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
@@ -54,8 +58,12 @@
                             </h3>
                             <h4 class="text-muted">This commands disables maintenance mode. Bringing the site backup for all
                                 to access.</h4>
-                            <a href="{{ url('/dashboard/commands/maintance-disable') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/maintance-disable') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
@@ -68,8 +76,12 @@
                             </h3>
                             <h4 class="text-muted">This commands clears your sites cache. This cache depends on what driver
                                 you are using.</h4>
-                            <a href="{{ url('/dashboard/commands/clear-cache') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/clear-cache') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
@@ -84,8 +96,12 @@
                                 <i class="{{ config('other.font-awesome') }} fa-terminal"></i> Clear View Cache
                             </h3>
                             <h4 class="text-muted">This commands clears your sites compiled views cache.</h4>
-                            <a href="{{ url('/dashboard/commands/clear-view-cache') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/clear-view-cache') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
@@ -97,8 +113,12 @@
                                 <i class="{{ config('other.font-awesome') }} fa-terminal"></i> Clear Route Cache
                             </h3>
                             <h4 class="text-muted">This commands clears your sites compiled routes cache.</h4>
-                            <a href="{{ url('/dashboard/commands/clear-route-cache') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/clear-route-cache') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
@@ -110,8 +130,12 @@
                                 <i class="{{ config('other.font-awesome') }} fa-terminal"></i> Clear Config Cache
                             </h3>
                             <h4 class="text-muted">This commands clears your sites compiled configs cache.</h4>
-                            <a href="{{ url('/dashboard/commands/clear-config-cache') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/clear-config-cache') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
@@ -126,8 +150,12 @@
                                 <i class="{{ config('other.font-awesome') }} fa-terminal"></i> Clear All Cache
                             </h3>
                             <h4 class="text-muted">This commands clears ALL of your sites cache.</h4>
-                            <a href="{{ url('/dashboard/commands/clear-all-cache') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/clear-all-cache') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
@@ -139,8 +167,12 @@
                                 <i class="{{ config('other.font-awesome') }} fa-terminal"></i> Set All Cache
                             </h3>
                             <h4 class="text-muted">This commands sets ALL of your sites cache.</h4>
-                            <a href="{{ url('/dashboard/commands/set-all-cache') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/set-all-cache') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
@@ -152,8 +184,12 @@
                                 <i class="{{ config('other.font-awesome') }} fa-terminal"></i> Send Test Email
                             </h3>
                             <h4 class="text-muted">This commands tests your email configuration.</h4>
-                            <a href="{{ url('/dashboard/commands/test-email') }}" class="btn btn-sm btn-primary">Run
-                                Command</a>
+                            <form role="form" method="POST" action="{{ url('/dashboard/commands/test-email') }}">
+                                @csrf
+                                <button type="submit" class="btn btn-sm btn-primary">
+                                    <i class='{{ config('other.font-awesome') }} fa-check-circle'></i> Run Commnd
+                                </button>
+                            </form>
                         </div>
                     </div>
                 </div>
diff --git a/routes/web.php b/routes/web.php
index 026d83dc10..79cf301a19 100755
--- a/routes/web.php
+++ b/routes/web.php
@@ -733,16 +733,16 @@
         // Commands
         Route::group(['prefix' => 'commands'], function () {
             Route::get('/', [App\Http\Controllers\Staff\CommandController::class, 'index'])->name('staff.commands.index');
-            Route::get('/maintance-enable', [App\Http\Controllers\Staff\CommandController::class, 'maintanceEnable']);
-            Route::get('/maintance-disable', [App\Http\Controllers\Staff\CommandController::class, 'maintanceDisable']);
-            Route::get('/clear-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearCache']);
-            Route::get('/clear-view-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearView']);
-            Route::get('/clear-route-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearRoute']);
-            Route::get('/clear-config-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearConfig']);
-            Route::get('/clear-all-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearAllCache']);
-            Route::get('/set-all-cache', [App\Http\Controllers\Staff\CommandController::class, 'setAllCache']);
-            Route::get('/clear-compiled', [App\Http\Controllers\Staff\CommandController::class, 'clearCompiled']);
-            Route::get('/test-email', [App\Http\Controllers\Staff\CommandController::class, 'testEmail']);
+            Route::post('/maintance-enable', [App\Http\Controllers\Staff\CommandController::class, 'maintanceEnable']);
+            Route::post('/maintance-disable', [App\Http\Controllers\Staff\CommandController::class, 'maintanceDisable']);
+            Route::post('/clear-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearCache']);
+            Route::post('/clear-view-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearView']);
+            Route::post('/clear-route-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearRoute']);
+            Route::post('/clear-config-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearConfig']);
+            Route::post('/clear-all-cache', [App\Http\Controllers\Staff\CommandController::class, 'clearAllCache']);
+            Route::post('/set-all-cache', [App\Http\Controllers\Staff\CommandController::class, 'setAllCache']);
+            Route::post('/clear-compiled', [App\Http\Controllers\Staff\CommandController::class, 'clearCompiled']);
+            Route::post('/test-email', [App\Http\Controllers\Staff\CommandController::class, 'testEmail']);
         });
 
         // Flush System