[webapps] KodExplorer 4.52 - Open Redirect
KodExplorer 4.52版本存在开放重定向漏洞,攻击者可通过构造恶意链接参数,在用户登录后将其重定向至恶意网站。 2025-4-16 00:0:0 Author: www.exploit-db.com(查看原文) 阅读量:6 收藏
KodExplorer 4.52版本存在开放重定向漏洞,攻击者可通过构造恶意链接参数,在用户登录后将其重定向至恶意网站。 2025-4-16 00:0:0 Author: www.exploit-db.com(查看原文) 阅读量:6 收藏
# Exploit Title: KodExplorer 4.52 - Open Redirect
# Date: 2024-11-08
# Exploit Author: Rahad Chowdhury
# Vendor Homepage: https://kodcloud.com/
# Software Link: https://github.com/kalcaddle/KodExplorer/releases/tag/4.52
# Version: 4.52
# Tested on: Windows 10, PHP 8.2.4, Apache 2.4.56
*Steps to Reproduce:*
1. At first visit this url http://target.com/index.php?user/login&link=.
2. Then use any malicious url in link parameter.
3. your link will be look like:
http://target.com/index.php?user/login&link=https://{site}.com
4. login your account and you will redirect to malicious url.
文章来源: https://www.exploit-db.com/exploits/52245
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh