Question2Answer 1.5.3 CSRF / Brute Force

Hello list! These are Brute Force, Insufficient Anti-automation and Cross-Site Request Forgery vulnerabilities in Question2Answer. This is the first part of vulnerabilities in this web application. ------------------------- Affected products: ------------------------- Vulnerable are all versions ...

Booking System Pro - Cross-Site Request Forgery

Exploit Title: Booking System Pro CSRF Vulnerability Date: 28/08/2012 Author: DaOne @LibyanCA Vendor: http://www.neptunescripts.com/products Price: $39 CSRF Add Admin...

VamCart 0.9 - Cross-Site Request Forgery

Exploit Title: VamCart v0.9 CSRF Vulnerability Date: 20/08/2012 Author: DaOne Software Link: http://vamcart.googlecode.com/files/vamcart.zip Greetings to: LCA CSRF Add Admin:...

Flyspray 0.9.9.6 - Cross-Site Request Forgery

Exploit Title: Flyspray 0.9.9.6 CSRF Vulnerability Date: 06 Feb 2012 Author: Vaibhav Gupta Software Link: http://flyspray.org/flyspray-0.9.9.6.zip Version: 0.9.9.6 +---+CSRF Add Admin Account after authentication+---+ CSRF Exploit to add ADMIN account...

Wizmall 6.4 Cross Site Request Forgery

Exploit Title: wizmall 6.4 CSRF Vulnerabilities Date: 08/10/2010 Author: pyw1414 Software Link: http://www.shop-wiz.com/board/main/view/root/wizmall01/159/0 Version: 6.4 UTF-8 For php Tested on: XP SP3 -= CSRF Exploit - Change Admin ID/PW =- Wizmall 6.4 UTF-8 For php CSRF Vulnerabilities - Change...

Ez Cart 1.0 - Multiple Cross-Site Request Forgery Vulnerabilities

----------------------------------------------------------------------------------------------- Title: Ez Cart Multiple XSRF Vulnerabilities Author: Milos Zivanovic Email: milosz.securityatgmail.com Date: 15. December 2009...