2021-03-18 16:22:01 +00:00
id : CVE-2018-11784
info :
2022-04-29 19:58:07 +00:00
name : Apache Tomcat - Open Redirect
2021-03-18 16:22:01 +00:00
author : geeknik
severity : medium
2022-04-22 10:38:41 +00:00
description : Apache Tomcat versions prior to 9.0.12, 8.5.34, and 7.0.91 are prone to an open-redirection vulnerability because it fails to properly sanitize user-supplied input.
reference :
- https://lists.apache.org/thread.html/23134c9b5a23892a205dc140cdd8c9c0add233600f76b313dda6bd75@%3Cannounce.tomcat.apache.org%3E
2022-04-29 19:58:07 +00:00
- https://nvd.nist.gov/vuln/detail/CVE-2018-11784
2022-06-07 20:50:59 +00:00
- http://web.archive.org/web/20210509082244/https://www.securityfocus.com/bid/105524
2021-09-10 11:26:40 +00:00
classification :
cvss-metrics : CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
2022-04-22 10:38:41 +00:00
cvss-score : 4.3
2021-09-10 11:26:40 +00:00
cve-id : CVE-2018-11784
cwe-id : CWE-601
2022-07-04 13:18:53 +00:00
metadata :
shodan-query : title:"Apache Tomcat"
2022-04-22 10:38:41 +00:00
tags : tomcat,redirect,cve,cve2018,apache
2021-03-18 16:22:01 +00:00
requests :
- method : GET
path :
2022-06-06 10:40:15 +00:00
- "{{BaseURL}}//interact.sh"
2021-03-18 16:22:01 +00:00
matchers :
- type : regex
regex :
2023-03-01 08:39:14 +00:00
- '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/?(\/|[^.].*)?$' # https://regex101.com/r/L403F0/1
2021-03-18 16:22:01 +00:00
part : header
2022-04-29 19:58:07 +00:00
# Enhanced by mp on 2022/04/26