id: CVE-2014-9180 info: name: Eleanor CMS - Open Redirect author: Shankar Acharya severity: medium description: | Open redirect vulnerability in go.php in Eleanor CMS allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the QUERY_STRING. remediation: | Update to the latest version of Eleanor CMS to fix the open redirect vulnerability. reference: - https://packetstormsecurity.com/files/129087/Eleanor-CMS-Open-Redirect.html - https://nvd.nist.gov/vuln/detail/CVE-2014-9180 classification: cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:P/A:N cvss-score: 5 cve-id: CVE-2014-9180 cwe-id: CWE-601 epss-score: 0.00248 epss-percentile: 0.62447 cpe: cpe:2.3:a:eleanor-cms:eleanor_cms:-:*:*:*:*:*:*:* metadata: verified: true max-request: 1 vendor: eleanor-cms product: eleanor_cms shodan-query: html:"eleanor" tags: packetstorm,cve,cve2014,eleanor,cms,redirect http: - method: GET path: - "{{BaseURL}}/go.php?http://interact.sh" matchers: - type: regex part: header regex: - '(?m)^(?:Location\s*?:\s*?)(?:http?://|//)(?:[a-zA-Z0-9\-_\.@]*)interact\.sh.*$' # digest: 4a0a00473045022040e9ac4ab11f39abc8207d5bccce3746068db5bb2ca7bfd42993253f05d614e4022100b3ef9ea4281d996e7e9c8d22ab93a1e9ee473c1245ee0eb626f5cba66b5a1df0:922c64590222798bb761d5b6d8e72950