The document describes a CSRF vulnerability in iGaming CMS v1.5, allowing attackers to create new admin accounts and execute arbitrary SQL queries via crafted URLs. No actual exploit code is provided, only proof-of-concept URLs.
Classification
Writeup 90%
Attack Type
Sqli | Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target:iGaming CMS v1.5
No auth needed
Prerequisites:Victim must visit a malicious link while authenticated as an admin