SyndeoCMS <= 3.0 CSRF "0day" Vulnerability

Posted on domenica 19 febbraio 2012 by Ivano Binetti

Today I've found a new "0day" vulnerability into Syndeocms 3.0 - and lower version - and I've created an exploit in order to automatically add an administrator account when the real administrator browses an "ad hoc" created web page containing a simple html/javascript code.

For more details:

Some web sites which published my "0day" vulnerability:

0 Responses to "SyndeoCMS <= 3.0 CSRF "0day" Vulnerability":