QuickEStore CSRF SQL Mayhem.

By secgeeks - Posted on July 21st, 2007

Tagged:

644

vote

This exploit is small but pretty interesting, because it is actually a very beautiful CSRF example in all it's simplicity. Yes, they use CF tokens, but tokens that are guessable. It's not only CSRFable but also is vulnerable to SQL injection. Just imagine 100 vulnerable sites being loaded into one website and orchestrated as one big CSRF SQL injecting symphony on behalf of your IP. Sounds strange? Beautiful, It takes two to tango ^^

Bookmark/Search this post with:

Trackback URL for this post:

http://secgeeks.com/trackback/774

Similar entries

Recent blog posts

Newly Popular

Drupalit monthly

Drupalit weekly

Drupalit daily

Drupalit hottest

Drupalit latest

Recent comments

Problem solved!!!!
30 weeks 5 days ago
New version here
33 weeks 2 days ago
thanks for sharing.
1 year 1 week ago
links
1 year 2 weeks ago
Link to preplay
1 year 2 weeks ago
so now you are on linkedin
1 year 18 weeks ago
Outlook Email search tool
1 year 34 weeks ago
nice tool..
2 years 25 weeks ago
Preplay for windows
2 years 26 weeks ago
yeah,foxit is god
2 years 28 weeks ago

Get SecGeeks Feeds in your email:

Navigation

Who's online

There are currently 0 users and 11 guests online.

BlogRoll

Hack In The Box

http://maltainfosec.org
http://sipvicious.org/blog/
astalavista.com
Fake antivirus removal instructions

Partners

www.techmantras.com
Play Free Bingo at WikiBingo.co.uk
Find the latest Scratch Cards Games
Play bingo with no commitment-bingo winner.
Rent Sell Property
Post your Classified Ads for free
add your link here..