2022-03-13 08:58:20 +00:00
id : CVE-2019-9915
info :
2022-10-19 21:11:27 +00:00
name : GetSimple CMS 3.3.13 - Open Redirect
2022-03-13 08:58:20 +00:00
author : 0x_Akoko
severity : medium
2022-10-19 21:11:27 +00:00
description : GetSimple CMS 3.3.13 contains an open redirect vulnerability via the admin/index.php redirect parameter. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
2023-09-27 15:51:13 +00:00
impact : |
An attacker can exploit this vulnerability to redirect users to malicious websites, leading to phishing attacks or the installation of malware.
2023-09-06 12:53:28 +00:00
remediation : |
Upgrade to the latest version of GetSimple CMS to fix the open redirect vulnerability.
2022-03-13 08:58:20 +00:00
reference :
- https://www.invicti.com/web-applications-advisories/ns-18-056-open-redirection-vulnerability-in-getsimplecms
2022-03-14 19:17:46 +00:00
- https://github.com/GetSimpleCMS/GetSimpleCMS/issues/1300
2022-08-01 05:44:32 +00:00
- https://www.netsparker.com/web-applications-advisories/ns-18-056-open-redirection-vulnerability-in-getsimplecms/
2022-10-19 21:11:27 +00:00
- https://nvd.nist.gov/vuln/detail/CVE-2019-9915
2022-03-13 08:58:20 +00:00
classification :
2022-08-01 05:44:32 +00:00
cvss-metrics : CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score : 6.1
2022-03-13 08:58:20 +00:00
cve-id : CVE-2019-9915
cwe-id : CWE-601
2023-10-14 11:27:55 +00:00
epss-score : 0.00123
2024-01-14 13:49:27 +00:00
epss-percentile : 0.46435
2023-09-06 12:53:28 +00:00
cpe : cpe:2.3:a:get-simple.:getsimplecms:3.3.13:*:*:*:*:*:*:*
2022-07-29 19:15:59 +00:00
metadata :
2023-06-04 08:13:42 +00:00
verified : true
2023-09-06 12:53:28 +00:00
max-request : 1
2023-07-15 16:29:17 +00:00
vendor : get-simple.
product : getsimplecms
2023-12-05 09:50:33 +00:00
tags : cve,cve2019,redirect,getsimple,cms,get-simple.
2022-03-13 08:58:20 +00:00
2023-04-27 04:28:59 +00:00
http :
2022-07-29 19:15:59 +00:00
- raw :
- |
POST /admin/index.php?redirect=https://interact.sh/ HTTP/1.1
Host : {{Hostname}}
Content-Type : application/x-www-form-urlencoded
userid={{username}}&pwd={{password}}&submitted=Login
2022-03-13 08:58:20 +00:00
matchers :
- type : regex
part : header
2022-03-14 19:17:46 +00:00
regex :
2023-03-01 08:39:14 +00:00
- '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/' # https://regex101.com/r/ZDYhFh/1
2024-01-14 14:05:19 +00:00
# digest: 4b0a0048304602210089aaa53db993704cb98fe23f5e51730fc214f7261e28bf603c30f2537028442c022100b6d5dda5739d9e4ae4f8ad292544d87932b68b7dc63b1ee6cc1e81f9eaf9b975:922c64590222798bb761d5b6d8e72950