Multiple CSRF in SimplePHPBlog

看板Bugtraq作者deme.時間18年前 (2007/10/17 23:39)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串1/2 (看更多)

SimplePHPBlog Cross Site Request Forgeries Tested on v0.4.9 Discovered by: Demential Web: http://hackish.altervista.org E-mail: deme [at] hackish [dot] eu SimplePHPBlog website: http://www.simplephpblog.com/ - posting [img=add_block.php?action=delete&block_id=*] in a comment where * is an ID of a block, when administrator reads the comment block * will be erased. - posting [img=add_link.php?action=delete&link_id=*] in a comment where * is an ID of a link, when administrator reads the comment link * will be erased.

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 deme. 的文章

文章代碼(AID): #175YoR00 (Bugtraq)

討論串 (同標題文章)

完整討論串 (本文為第 1 之 2 篇)：

排序：最新先 | 最舊先 | 留言數

Re: Multiple CSRF in SimplePHPBlog Re: Multiple CSRF in SimplePHPBlog

ml.

18年前, 10/19

Multiple CSRF in SimplePHPBlog Multiple CSRF in SimplePHPBlog

18年前, 10/17

文章代碼(AID): #175YoR00 (Bugtraq)