2 FA Bypass via CSRF Attack

Introduction :

Hello Guys Again, I am Vishal Bharad, I’m here again to share about my findings on How I Bypass 2 Factor Authentication via CSRF (Cross Site Request Forgery).

About the Vulnerability :

You all know about the 2FA Bypass Vulnerability. There are some Techniques.

1. Bypassing 2fa using conventional session management
2. Bypassing 2fa Via OAuth mechanism
3. Bypassing 2fa via brute force
4. Bypassing 2fa using race conditions (RARE)
5. Bypassing 2fa using modifies response
6. Bypassing 2fa using Activation link
7. Bypassing 2fa in password reset page

But here I am able to disable the 2FA via Client side attack which is CSRF.

For Discovering the bug I have tried to Disable 2FA using CSRF file. But I have seen that there is token is generated in the CSRF poc. But when I tried this html file that token is never get expired. This token is used again and again to disable 2FA on another Account.

Note : Always try to Disable 2FA using CSRF Attack.

So the program is Mail.ru which is Available on Hackerone.