nuclei-templates/http/cves/2012/CVE-2012-6499.yaml

id: CVE-2012-6499

info:
  name: WordPress Plugin Age Verification v0.4 - Open Redirect
  author: ctflearner
  severity: medium
  description: |
    Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and earlier for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_to parameter.
  impact: |
    An attacker can exploit this vulnerability to redirect users to malicious websites, leading to phishing attacks or the installation of malware.
  remediation: |
    Update to the latest version of the WordPress Plugin Age Verification or remove the plugin if not needed.
  reference:
    - https://www.exploit-db.com/exploits/18350
    - https://wordpress.org/plugins/age-verification
    - https://nvd.nist.gov/vuln/detail/CVE-2012-6499
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:N
    cvss-score: 5.8
    cve-id: CVE-2012-6499
    cwe-id: CWE-20
    epss-score: 0.03575
    epss-percentile: 0.91621
    cpe: cpe:2.3:a:age_verification_project:age_verification:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: age_verification_project
    product: age_verification
  tags: cve,cve2012,wordpress,wp,wp-plugin,redirect,age-verification,age_verification_project

http:
  - raw:
      - |
        POST /wp-content/plugins/age-verification/age-verification.php HTTP/1.1
        Host: {{Hostname}}

        redirect_to=http://www.interact.sh&age_day=1&age_month=1&age_year=1970

    matchers:
      - type: regex
        part: header
        regex:
          - '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/?(\/|[^.].*)?$'
# digest: 4a0a00473045022100dd2aa86d10e6be5f1738aa796ffd9c92e8353df18f5d595923b6318568db4058022069941042036744dbd5b17fd869b34cab85848f1db8fa9df127a07d51dcd9765a:922c64590222798bb761d5b6d8e72950
Create CVE-2012-6499.yaml Added a New Nuclei Template as CVE-2012-6499 2023-06-14 16:04:13 +00:00			`id: CVE-2012-6499`
Update CVE-2012-6499.yaml 2023-06-15 16:56:15 +00:00
Create CVE-2012-6499.yaml Added a New Nuclei Template as CVE-2012-6499 2023-06-14 16:04:13 +00:00			`info:`
			`name: WordPress Plugin Age Verification v0.4 - Open Redirect`
			`author: ctflearner`
			`severity: medium`
			`description: \|`
			`Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and earlier for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_to parameter.`
Added Impact 2023-09-27 15:51:13 +00:00			`impact: \|`
			`An attacker can exploit this vulnerability to redirect users to malicious websites, leading to phishing attacks or the installation of malware.`
updated other CVEs 2023-09-06 13:22:34 +00:00			`remediation: \|`
			`Update to the latest version of the WordPress Plugin Age Verification or remove the plugin if not needed.`
Create CVE-2012-6499.yaml Added a New Nuclei Template as CVE-2012-6499 2023-06-14 16:04:13 +00:00			`reference:`
updated req 2023-06-19 18:37:45 +00:00			`- https://www.exploit-db.com/exploits/18350`
Update CVE-2012-6499.yaml 2023-06-15 16:56:15 +00:00			`- https://wordpress.org/plugins/age-verification`
lint fix 2023-06-14 16:18:29 +00:00			`- https://nvd.nist.gov/vuln/detail/CVE-2012-6499`
Create CVE-2012-6499.yaml Added a New Nuclei Template as CVE-2012-6499 2023-06-14 16:04:13 +00:00			`classification:`
CVE Enrichment :tada: 2023-07-11 19:49:27 +00:00			`cvss-metrics: CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:N`
Create CVE-2012-6499.yaml Added a New Nuclei Template as CVE-2012-6499 2023-06-14 16:04:13 +00:00			`cvss-score: 5.8`
			`cve-id: CVE-2012-6499`
			`cwe-id: CWE-20`
product/queries updated 2024-05-31 19:23:20 +00:00			`epss-score: 0.03575`
			`epss-percentile: 0.91621`
updated other CVEs 2023-09-06 13:22:34 +00:00			`cpe: cpe:2.3:a:age_verification_project:age_verification::::::::`
TemplateMan Update [Thu Jun 22 07:35:38 UTC 2023] :robot: 2023-06-22 07:35:38 +00:00			`metadata:`
			`max-request: 1`
CVE Enrichment :tada: 2023-07-11 19:49:27 +00:00			`vendor: age_verification_project`
			`product: age_verification`
tags enhancements 2023-12-05 09:50:33 +00:00			`tags: cve,cve2012,wordpress,wp,wp-plugin,redirect,age-verification,age_verification_project`
Create CVE-2012-6499.yaml Added a New Nuclei Template as CVE-2012-6499 2023-06-14 16:04:13 +00:00
			`http:`
updated req 2023-06-19 18:37:45 +00:00			`- raw:`
			`- \|`
			`POST /wp-content/plugins/age-verification/age-verification.php HTTP/1.1`
			`Host: {{Hostname}}`

			`redirect_to=http://www.interact.sh&age_day=1&age_month=1&age_year=1970`
Create CVE-2012-6499.yaml Added a New Nuclei Template as CVE-2012-6499 2023-06-14 16:04:13 +00:00
			`matchers:`
			`- type: regex`
			`part: header`
			`regex:`
Update CVE-2012-6499.yaml 2023-06-15 16:56:15 +00:00			`- '(?m)^(?:Location\s?:\s?)(?:https?:\/\/\|\/\/\|\/\\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@])interact\.sh\/?(\/\|[^.].)?$'`
Auto Template Signing [Sat Jun 1 06:52:59 UTC 2024] :robot: 2024-06-01 06:53:00 +00:00			`# digest: 4a0a00473045022100dd2aa86d10e6be5f1738aa796ffd9c92e8353df18f5d595923b6318568db4058022069941042036744dbd5b17fd869b34cab85848f1db8fa9df127a07d51dcd9765a:922c64590222798bb761d5b6d8e72950`