37 matches found
ThinkCMF Cross Site Request Forgerly (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability in ThinkCMF, which can add an admin account...
CVE-2019-9688
sftnow through 2018-12-29 allows index.php?g=Admin&m=User&a=addpost CSRF to add an admin account...
BageCMS Cross-Site Request Forgery Vulnerability
BageCMS is a cross-platform content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in the index.php?r=admini/admin/create URL in BageCMS version 3.1.3. A remote attacker can exploit the vulnerability to add a backend administrator account...
Cross site request forgery (csrf)
In SimpleCE 2.3.0, a CSRF vulnerability can be exploited to add an administrator account via the index.php/user/new URI or change its settings via the index.php/user/1 URI, including its password...
Who's Who Script - CSRF Exploit (Add Admin Account)
No description provided by source. Title : Who's Who Script CSRF Exploit Add Admin Account Author : ZoRLu / [email protected] / [email protected] Home : http://milw00rm.com / its online Date : 30.10.2014 Demo : http://demo.phpscriptlerim.com/free/whoswho/ Download1 :...
Whos Who Script - Cross-Site Request Forgery (Add Admin)
Whos Who Script - Cross-Site Request Forgery Add Admin Title : Who's Who Script CSRF Exploit Add Admin Account Author : ZoRLu / [email protected] / [email protected] Home : http://milw00rm.com / its online Date : 30.10.2014 Demo : http://demo.phpscriptlerim.com/free/whoswho/ Download1 :...
Allomani Songs & Clips Script 2.7.0 - [CSRF] Add Admin Account
No description provided by source. Exploit Title: Allomani & Clips v2.7.0 - CSRF Add Admin Account Date:25 -06-2010 Author: G0D-F4Th3rG0D-F4Th3r Software Link: http://allomani.com html body onload=javascript:fireForms form method=POST name=form0 action= http://www.site.com/path/admin/index.php...
SocialCMS 1.0.2 - CSRF Vulnerability
No description provided by source. +-------------------------------------------------------------------------+ Exploit Title : Socialcms CSRF Vulnerability Date : 16-02-2012 Author : Ivano Binetti http://ivanobinetti.com Vendor site : http://socialcms.com Software link :...
Traidnt UP - Cross-Site Request Forgery Add Admin Account
No description provided by source. Exploit Title: Traidnt UP - CSRF Add Admin Account Date: 24-09-2010 Author: G0D-F4Th3r Software Link: http://www.traidnt.net Software Download: http://traidntup.googlecode.com/files/Traidnt%20up%20V3.0.zip Version: 3.0 Exploit html body onload=javascript:fireFor...
VR GPub 4.0 CSRF Vulnerability
No description provided by source. +-------------------------------------------------------------------------+ Exploit Title : VR GPub 4.0 CSRF Vulnerability version : VR GPub 4.0 Author : Cyber-Crystal Date : n/a Dork : inurl:VR GPub Software Link :...
viart shop 4.0.5 - CSRF Vulnerability
No description provided by source. +-------------------------------------------------------------------------+ Software : viart shop 4.0.5 Author : Or4nG.M4N Date : n/a Dork : inurl:powered by viart shop 4.0.5 Software Link : http://www.viart.com/...
win32/xp sp3 (Tr) Add Admin Account Shellcode 127 bytes
No description provided by source. Title : win32/xp sp3 Tr Add Admin Account Shellcode 127 bytes Proof : http://img823.imageshack.us/img823/1017/addqx.jpg Desc. : usr: zrl , pass: 123456 , localgroup: Administrator Author : ZoRLu / http://inj3ct0r.com/author/577 mail-msn :...
Flyspray 0.9.9.6 CSRF Vulnerability
No description provided by source. Exploit Title: Flyspray 0.9.9.6 CSRF Vulnerability Date: 06 Feb 2012 Author: Vaibhav Gupta Software Link: http://flyspray.org/flyspray-0.9.9.6.zip Version: 0.9.9.6 +---+CSRF Add Admin Account after authentication+---+ html body...
Rite CMS 1.0.0 Cross Site Request Forgery / Cross Site Scripting
Exploit Title: RiteCMS multiple vulnerabilities Date: 2013 30 July Exploit Author: Yashar shahinzadeh Credit goes for: ha.cker.ir Vendor Homepage: http://ritecms.com/ Tested on: Linux & Windows, PHP 5.2.9 Affected Version : 1.0.0 Contacts: http://Twitter.com/YShahinzadeh , http://y-shahinzadeh.ir...
ClipBucket 2.5 Cross Site Request Forgery
Exploit Title: ClipBucket 2.5 CSRF Vulnerability Author: DaOne LCA Date: 15/8/2012 Software Link: http://clip-bucket.com/ Or: http://sourceforge.net/projects/clipbucket/ CSRF Add Admin thanks to : Ly.Lolsec...
SyndeoCMS <= 3.0 CSRF flaws and fixes-vulnerability warning-the black bar safety net
Title: SyndeoCMS = 3.0 CSRF Vulnerability Author: Ivano Binetti http://ivanobinetti.com Program development website: http://www.syndeocms.org/ Download address: http://sourceforge.net/projects/syndeocms Affected version: 3.0 and below Test System Platform: Debian Squeeze 6.0 +--------------+Add...
SyndeoCMS 3.0 Cross Site Request Forgery
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : SyndeoCMS I'm adding ADMIN account form method="POST" name="form0" action="http://127.0.0.1:80/syndeocms/starnet/index.p...
SyndeoCMS 3.0 - Cross-Site Request Forgery
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : SyndeoCMS I'm adding ADMIN account input type="hidden" name="access3...
SyndeoCMS <= 3.0 CSRF Vulnerability
Exploit for php platform in category web applications +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : SyndeoCMS I'm adding ADMIN account input type="hidden" name="access13"...
SocialCMS 1.0.2 - Cross-Site Request Forgery
+-------------------------------------------------------------------------+ Exploit Title : Socialcms CSRF Vulnerability Date : 16-02-2012 Author : Ivano Binetti http://ivanobinetti.com Vendor site : http://socialcms.com Software link :...