nuclei-templates/cves/2022/CVE-2022-0692.yaml

id: CVE-2022-0692

info:
  name: Rudloff alltube prior to 3.0.1 - Open Redirect
  author: 0x_Akoko
  severity: medium
  description: "An open redirect vulnerability exists in Rudloff/alltube that could let an attacker construct a URL within the application that causes redirection to an arbitrary external domain via Packagist in versions prior to 3.0.1."
  reference:
    - https://huntr.dev/bounties/4fb39400-e08b-47af-8c1f-5093c9a51203/
    - https://www.cvedetails.com/cve/CVE-2022-0692
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.10
    cve-id: CVE-2022-0692
    cwe-id: CWE-601
  tags: cve,cve2022,redirect,rudloff,alltube

requests:
  - method: GET
    path:
      - '{{BaseURL}}/index.php/example.com'

    matchers:
      - type: regex
        part: header
        regex:
          - '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@]*)example\.com\/?(\/|[^.].*)?$' # https://regex101.com/r/ZDYhFh/1

# Enhanced by mp on 2022/03/08
Create CVE-2022-0692.yaml 2022-03-04 10:18:48 +00:00			`id: CVE-2022-0692`

			`info:`
			`name: Rudloff alltube prior to 3.0.1 - Open Redirect`
			`author: 0x_Akoko`
			`severity: medium`
Enhancement: cves/2022/CVE-2022-0692.yaml by mp 2022-03-08 17:29:12 +00:00			`description: "An open redirect vulnerability exists in Rudloff/alltube that could let an attacker construct a URL within the application that causes redirection to an arbitrary external domain via Packagist in versions prior to 3.0.1."`
Create CVE-2022-0692.yaml 2022-03-04 10:18:48 +00:00			`reference:`
			`- https://huntr.dev/bounties/4fb39400-e08b-47af-8c1f-5093c9a51203/`
			`- https://www.cvedetails.com/cve/CVE-2022-0692`
			`classification:`
			`cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N`
			`cvss-score: 6.10`
			`cve-id: CVE-2022-0692`
			`cwe-id: CWE-601`
template location update 2022-03-04 16:47:44 +00:00			`tags: cve,cve2022,redirect,rudloff,alltube`
Create CVE-2022-0692.yaml 2022-03-04 10:18:48 +00:00
			`requests:`
			`- method: GET`
			`path:`
			`- '{{BaseURL}}/index.php/example.com'`

			`matchers:`
			`- type: regex`
			`part: header`
template location update 2022-03-04 16:47:44 +00:00			`regex:`
Enhancement: cves/2022/CVE-2022-0692.yaml by mp 2022-03-08 15:03:35 +00:00			`- '(?m)^(?:Location\s?:\s?)(?:https?:\/\/\|\/\/\|\/\\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@])example\.com\/?(\/\|[^.].)?$' # https://regex101.com/r/ZDYhFh/1`

			`# Enhanced by mp on 2022/03/08`