3 matches found
CVE-2020-26522
A cross-site request forgery CSRF vulnerability in mod/user/actuser.php in Garfield Petshop through 2020-10-01 allows remote attackers to hijack the authentication of administrators for requests that create new administrative accounts...
CVE-2020-26522
CVE-2020-26522 concerns a CSRF in Garfield Petshop’s mod/user/act_user.php that enables remote attackers to hijack administrator sessions to create new admin accounts. Affected software is Garfield Petshop (versions prior to 2020-10-01); underlying flaw is CSRF allowing unauthorized admin account...
Garfield Petshop 2020-10-01 Cross Site Request Forgery
!/usr/bin/perl Garfield Petshop Add-Admin Exploit By Ramdan Yantu rysec.io \ bastardlabs.info From Gorontalo - Indonesia Mail: ramdanyantuatgmail.com Application by Gamma Advertisa Link: https://detapos.co/ | https://demo.detapos.co.id/petshop CVE: CVE-2020-26522 use strict; use warnings; use...