This is an example of a HTML caption with a link.



14 Aug 2011

login with that desired user and password ; Prediction football 2.51

Labels:
# Exploit Title: [title]
# Google Dork: [if relevant]  intext:"Prediction football 2.51"
# Date: 08/08/2011
# Author: Smith Falcon
# Software Link: http://www.predictionfootball.com/download/download.html
# Version: 2.51
# Tested on: Linux
 
First create a username and go to Account Profile
 
The POST variable in index.php?cmd=changepass is vulnerable to CSRF
 
Grab Header Information with HTTP Live headers and replay the POST VARIABLE
 
&OLDPWD=anything&USERID=[id of user u want pwd
changed]&PWD1=[newpass]&PWD2=[newpass]&ChangePwd=Change+Password
 
REPLAY with new password of the userid and logout!
Now you can login with that desired user and password!
Posted by |

Friends Blog
Sponsors : Best Google Covers | Desktop Wallpaperslk | PSD Graphics
Copyright © 2012. bedegar - All Rights Reserved
Template Design by Cool Blogger Tutorials | Published by Templates Doctor
Powered by Blogger