This exploit demonstrates a CSRF vulnerability in phpAutoVideo, allowing an attacker to change the admin password without user interaction by tricking an authenticated admin into visiting a malicious page.
Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target:phpAutoVideo (version unspecified)
Auth required
Prerequisites:Victim must be authenticated as admin · Victim must visit the malicious page