Wolfcms open redirection Vulnerability / Exploit

  /     /     /  

Exploits / Vulnerability Discovered : 2018-04-09 | Type : webapps | Platform : php
This exploit / vulnerability Wolfcms open redirection is for educational purposes only and if it is used you will do on your own risk!

[+] Code ...

# Exploit Title: WolfCMS Open Redirection Vulnerability
# Google Dork: N/A
# Date: 04-04-2018
# Exploit Author: Sureshbabu Narvaneni#
# Author Blog : http://nullnews.in
# Vendor Homepage: http://www.wolfcms.org
# Software Link: https://bitbucket.org/wolfcms/wolf-cms-downloads/downloads/wolfcms-
# Affected Version:
# Category: WebApps
# Tested on: Win7 Enterprise x86/Kali Linux 4.12 i686
# CVE : CVE-2018-8813
# 1. Vendor Description:
# Light-weight, fast, simple and powerful CMS. PHP-based, easily extended CMS. Uses MySQL, SQLite or (from 0.7)
# PostgreSQL for db. Simple drag & drop page hierarchy. Open source, licensed under GPLv3.
# 2. Technical Description:
# Open redirect vulnerability in the login[redirect] parameter login
functionality in WolfCMS before allows
# remote attackers to redirect users to arbitrary web sites and conduct
phishing attacks via a malformed URL.
# 3. Proof Of Concept:
# Navigate to http://[URL]/wolfcms/?/admin/login
# Enter the credentials and replace login[redirect] to any url.
# You can see the unvalidated redirect.
# 4. Solution:
# Upgrade to latest release.
# http://www.wolfcms.org/blog.html
# 5. Reference:
# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8813
# https://github.com/wolfcms/wolfcms/issues/670