======================================================================= AneCMS CSRF Vulnerability ======================================================================= by Pratul Agrawal # Vulnerability found in- Admin module # email Pratulag@yahoo.com # company aksitservices # Credit by Pratul Agrawal # Software Ane_CMS # Category CMS / Portals # Site p4ge http://demo.anecms.com/index.php # Plateform php # Proof of concept # Targeted URL: http://server/acp/index.php?p=cfg&m=links Script to Add a new link through Cross Site request forgery . ................................................................................................................ . .................................................................................................................. After execution refresh the page and u can see that a new link with teh given name is Added automatically. #If you have any questions, comments, or concerns, feel free to contact me.