==================================================================================================================================== | # Title : Demanzo Matrimony v.1.5 CSRF Vulnerability | | # Author : indoushka | | # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 109.0.1(32-bit) | | # Vendor : https://demanzo.com/matrimony-site-development/ | | # Dork : Powered by ITAcumens or "Powered by Demanzo" | ==================================================================================================================================== poc : [+] infected file: add-staff.php [+] Inside folder /admin/add-staff.php [+] Dorking İn Google Or Other Search Enggine. [+] Copy the code below and paste it into an HTML file. [+] Go to the line 2. [+] Set the target site link Save changes and apply .

Name * :

Password * :

Email ID * :

Gender * :

Male Female

Designation * :

Address * :

Staff Status * :

Active Inactive

Greetings to :=================================================================================== jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm* moncet| ==================================================================================================