Dating Pro Genie 2015.7 Cross Site Request Forgery
Posted by deepcore on March 20, 2016 – 6:47 am
High-Tech Bridge Security Research Lab discovered multiple cross site request forgery (CSRF) vulnerabilities in a popular dating social network Dating Pro. A remote unauthenticated attacker can perform CSRF attacks to change administrator’s credentials and execute arbitrary system commands. Successful exploitation of the vulnerability may allow attacker to gain complete control over the vulnerable website, all its users and databases. suffers from a cross site request forgery vulnerability.
Post a reply
You must be logged in to post a comment.