===================================================== # Simple Blog PHP 2.0 - CSRF(Add Post) // Stored XSS ===================================================== # Vendor Homepage: http://simpleblogphp.com/ # Date: 13 Oct 2016 # Demo Link : http://simpleblogphp.com/blog/admin.php # Version : 2.0 # Platform : PHP # Author: Ashiyane Digital Security Team # Contact: hehsan979@gmail.com ===================================================== # CSRF PoC(Add Post):
# Stored XSS PoC:
================================================================================ # Discovered By : Ehsan Hosseini ================================================================================