Exploit/Advisories no image

Published on April 8th, 2022 📆 | 5893 Views ⚑

0

qdPM 9.2 Cross Site Request Forgery – Torchsec


https://www.ispeech.org

# Exploit Title: qdPM 9.2 - Cross-site Request Forgery (CSRF)
# Google Dork: NA
# Date: 03/27/2022
# Exploit Author: Chetanya Sharma @AggressiveUser
# Vendor Homepage: https://qdpm.net/
# Software Link: https://sourceforge.net/projects/qdpm/files/latest/download
# Version: 9.2
# Tested on: KALI OS
# CVE : CVE-2022-26180
#
---------------
Steps to Exploit : 
1) Make an HTML file of given POC (Change UserID field Accordingly)and host it.
2) send it to victim.
qdPM Open Source Project Management - qdPM 9.2 (CSRF POC)

Source link

Tagged with:



Comments are closed.






© Torchsec  Privacy Policy Disclaimer  T&C



Back to Top ↑