CVE-2008-7269

UNRATED

Public PoC

Description

Open redirect vulnerability in api.php in SiteEngine 5.x allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the forward parameter in a logout action.

Affected products

boka / siteengine5.0 – 5.0

Exploits & PoCs

nucleiUC Gateway Investment SiteEngine v5.0 - Open Redirectby ctflearner

References

EXPLOIThttps://www.exploit-db.com/exploits/6823
MISChttp://www.securityfocus.com/archive/1/497747/100/0/threaded
MISChttp://www.securityfocus.com/bid/31888