DD-WRT v24-sp1 - (CSRF) Cross Site Reference Forgery Exploit

No description provided by source. Remote root dd-wrt -------------------------------------------------------------------------------- Written by Michael Brooks Special thanks to str0ke Exploits tested on the newist stable version: Firmware: DD-WRT v24-sp1 07/27/08 micro Product Homepage:...

Open Blog 1.2.1 - CSRF Vulnerability

No description provided by source...

Router ONO Hitron CDE-30364 - CSRF Vulnerability

No description provided by source. Exploit Title: Router ONO Hitron CDE-30364 - CSRF Vulnerability Date: 14-9-2013 Exploit Author: Matias Mingorance Svensson - matias.msatowasp.org Vendor Homepage: http://www.ono.es/clientes/te-ayudamos/dudas/internet/equipos/hitron/hitron-cde-30364/ Tested on:...

Limny 2.0 - Create Admin User CSRF Exploit

No description provided by source...

phpKF Forum 1.80 profil_degistir.php CSRF Exploit

No description provided by source...

N-13 News 3.4 - Remote Admin Add CSRF Exploit

No description provided by source. ======================================================== N-13 News 3.4 Remote Admin Add CSRF Exploit ======================================================== Title: N-13 News 3.4 Remote Admin Add CSRF Exploit Author : anT!-Tr0J4n Email : D3v-PoinTathotmaild0tcom...

Harris Stratex StarMAX 2100 WIMAX Subscriber Station Running Config CSRF Exploit

No description provided by source. I found CSRF vulnerability in Harris Stratex WIMAX 2100 subscriber station.Using this code i am able to view the current configuration of the subscriber station without authentication from both LAN & WAN Software Link:http://securityvulns.com/Wdocument736.html...

EGroupware 1.8.006 - Multiple Vulnerabilities

No description provided by source. 1）简单的CSRF利用下面创建新的管理员登录“ImmuniWeb”和密码“ImmuniWeb”： 2）利用CSRF 写入php文件 1.php"...

Plogger Gallery 1.0 CSRF Change Admin Password

No description provided by source. ------------------------------------------------------------------------- Software : PloggerGallery Version 1.0 Author : Or4nG.M4N Date : n/a Dork : Forbidden Software Link : http://www.plogger.org/download/...

Endeca Latitude 2.2.2 - CSRF Vulnerability

No description provided by source...

Frog 0.9.5 - CSRF Vulnerability

No description provided by source. ------------------------------------------------------------------------------------------------- Title: Frog = 0.9.5 XSRF Vulnerability Change Admin Password Author: Milos Zivanovic Email: [email protected]:[email protected] Date: 13...

Sharetronix 3.3 - Multiple Vulnerabilities

Exploit for php platform in category web applications Product: Sharetronix Vendor: Blogtronix, LLC Vulnerable Versions: 3.3 and probably prior Tested Version: 3.3 Advisory Publication: May 7, 2014 without technical details Vendor Notification: May 7, 2014 Vendor Patch: May 27, 2014 Public...

D-LINK DIR-615 Cross Site Request Forgery

Exploit Title: Dlink DIR-615 Hardware Version E4 Firmware Verion 5.10 CSRF Vulnerability Google Dork: N/A Date: 19/02/2014 Exploit Author: Dhruv Shah Vendor Homepage: http://www.dlink.com/us/en/home-solutions/connect/routers/dir-615-wireless-n-300-router Software Link: N/A Hardware Version:E4...

Beetel TC1-450 Airtel Wireless Router - Multiple Cross-Site Request Forgery Vulnerabilities

Exploit Title: Beetel TC1-450 Airtel Wireless Router - Multiple CSRF Vulnerabilities Date: 12/13/2013 Author: SaMaN @samanL33T Vendor Homepage:http://www.beetel.in/node/10139 Category: Hardware/Wireless Router Firmware Version: TM4-0Q-020 and below Tested on: Beetel 450-TC1 Wireless Router Patch/...

Сross-Site Request Forgery (CSRF) in AskApache Firefox Adsense Wordpress plugin

High-Tech Bridge Security Research Lab discovered vulnerability in AskApache Firefox Adsense Wordpress plugin, which can be exploited to perform Сross-Site Request Forgery CSRF attacks. 1 Сross-Site Request Forgery CSRF in AskApache Firefox Adsense Wordpress plugin: CVE-2013-6992 The vulnerabilit...

Unicorn Router WB-3300NR CSRF (Factory Reset/DNS Change)

Exploit Title: Unicorn Router WB-3300NR CSRF Factory Reset/DNS Change Exploit Author: absane Blog: http://blog.noobroot.com Discovery date: October 29th 2013 Vendor Homepage: http://www.eunicorn.co.kr/kimsboard7/product.php?inc=wb-3300nr Tested on: Unicorn WB-3300NR v1.0 Firmware Version:...

D-Link DSL-2740B - Multiple Cross-Site Request Forgery Vulnerabilities

+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : D-Link DSL-2740B ADSL Router CSRF Vulnerability Date : 09-08-2013 Author : Ivano Binetti http://ivanobinetti.com Vendor site : http://www.d-link.com...

Pluck CMS 4.7 - HTML Code Injection

Exploit Title: Pluck CMS CSRF - Injecting malicious contents to pagess Date: 2013 4 August Exploit Author: Yashar shahinzadeh Credit goes for: http://y-shahinzadeh.ir & ha.cker.ir Vendor Homepage: http://www.pluck-cms.org/ Tested on: Linux & Windows, PHP 5.2.9 Affected Version : 4.7 Contacts:...

Multiple Vulnerabilities in Kasseler CMS

Advisory ID: HTB23158 Product: Kasseler CMS Vendor: Kasseler CMS Vulnerable Versions: 2 r1223 and probably prior Tested Version: 2 r1223 Vendor Notification: May 29, 2013 Vendor Patch: June 28, 2013 Public Disclosure: July 3, 2013 Vulnerability Type: SQL Injection CWE-89, Cross-Site Scripting...

PHP Ticket System Beta 1 - Cross-Site Request Forgery

Exploit Title : php ticket system csrf 4. + Author : Pablo '7days' Riberio 5. + Team: So Good Security 6. + Other 0days : http://pastebin.com/u/7days 7. + Version : = BETA 1 8. + Tested on : windows/internet explorer 9. + Details: Reset admin password via CSRF 10. + Vendor:...