[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

phpBB 3.0.11 CSRF Vulnerability

Author
mehdidadkhah
Risk
[
Security Risk Medium
]
0day-ID
0day-ID-21135
Category
web applications
Date add
20-08-2013
Platform
php
phpBB 3.0.11  CSRF  vulnerability
------------------------------------------------------------
 
== Description ==
- Software link:https://www.phpbb.com/downloads/
- Affected versions: version  3.0.11 .other versions might be affected as well.
- Vulnerability discovered by: Mehdi Dadkhah(Isfahan)(Email: mehdidadkhah@live.com)
-Google Dork: intext:"Powered by phpBB® Forum Software © phpBB Group"


== Vulnerabilities  with proof of concept ==
1)CSRF:
An attacker may force the users of a web application to execute actions of the attacker's choosing. A successful CSRF exploit can compromise 
end user data and operation in case of normal user. If the targeted end user is the administrator account, this can compromise the entire web
application.

Form name: <empty>
Form action: http://site.com/ucp.php?mode=login&sid=d64a926ae04907bfacff2106f4cc6717
Form method: POST

Form inputs:
username [Text]
password [Password]
autologin [Checkbox]
login [Submit]
redirect [Hidden]

== Solution ==
check code and correct errors.

#  0day.today [2024-12-24]  #