SNS IPS: Protocol Alarm

Site with open redirect

Description		An external attacker can control the redirection target.

Details		An open redirect is a web application that takes parameter and redirect to the parameter without validation. Ex: www.realsite.fr/client.html?url=http://www.badsite.com/ This vulnerability is used in phishing or XSS attacks.

Triggering conditions		If the location field contain a part of the request (URL).

Complements

References

Available since		ASQ v4.0.0

Protects		Apache Tomcat Open Redirect Vulnerability Fixed by 7.0.91, 8.5.34 and 9.0.12 IBM WebSphere Commerce Open Redirect Vulnerability Gogs "isValidRedirect()" Open Redirect Vulnerability Django Open Redirect Vulnerability Fixed By 1.11.15, 2.0.8 and 2.1 MyBB Open Redirect Vulnerability Horde Kronolith Open Redirect Vulnerability Fixed By 4.2.22 MantisBT Cross-Site Request Forgery / Open Redirection Vulnerability Fixed by 2.4.1/2.3.3/1.3.11 IBM Business Process Manager Open Redirect Vulnerability Fortinet FortiAnalyzer and FortiManager Open Redirect Vulnerability Fixed by 5.4.3 Cisco Integrated Management Controller Redirection Vulnerability Horde Groupware Multiple Vulnerabilities Fixed by 5.2.16 WordPress Third-Party Plugins Multiple Vulnerabilities WordPress Third-Party Plugins Multiple Vulnerabilities Cisco WebEx Meeting Center sc3100 Open Redirect Vulnerability TYPO3 Third-Party Components Multiple Vulnerabilities Lynx URL Parsing Open Redirect Vulnerability Nagios XI Multiple Vulnerabilities Fixed by 5.3.0 Splunk Web Open Redirect Vulnerability Fixed by 6.4.3, 6.3.6, 6.2.10, 6.1.11, 6.0.12 and 5.0.16 Splunk Web Open Redirect Vulnerability Fixed by 6.4.2, 6.3.6 and 6.2.11 Apache Struts Multiple Vulnerabilities Fixed by 2.3.29 and 2.5.1 Wordpress Multiple Third Party Plugins Vulnerabilities Cisco WebEx Meetings Server Open Redirect Vulnerability HP Universal CMDB Information Disclosure and Open Redirect Vulnerability Fortinet FortiOS Multiple Vulnerabilities Django Multiple Vulnerabilities Fixed by 1.9.3 and 1.8.10 IBM WebSphere Portal Multiple Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities WordPress Multiple Vulnerabilities Fixed by 4.4.2 IBM WebSphere Commerce Aurora Starter Store Open Redirect Vulnerability Redmine "back_url" Open Redirect Vulnerability Redmine Open Redirect Vulnerability Fixed by 3.1.1 phpMyAdmin Content Spoofing Vulnerability Fixed by 4.4.15.1 and 4.5.1 Drupal Overlay Module Open Redirect Vulnerability Fixed by 7.41 Moodle Multiple Vulnerabilities Fixed by 2.9, 2.8.6, 2.7.8 and 2.6.11 Cisco WebEx Meeting Center Open Redirect Vulnerability Wordpress Multiple Third Party Plugins Multiple Vulnerabilities IBM Domino Web Server Multiple Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Drupal Third-Party Modules Multiple Vulnerabilities SolarWinds Network Performance Monitor "ReturnUrl" Open Redirection Weakness Cisco TelePresence TC Software Open Redirection Weakness and Cross-Site Scripting Vulnerability Drupal "destination" Multiple Redirection Weaknesses IBM Business Process Manager Open Redirection Weakness Drupal Views Module Open Redirection Weakness and Information Disclosure Security Issue SUSE Manager Cross Site Request Forgery and URL Redirection Issues

Last 100 CVE		CVE-2018-1739 CVE-2018-14574 CVE-2018-11784 CVE-2018-10678 CVE-2017-7620 CVE-2017-6604 CVE-2017-3799 CVE-2017-3126 CVE-2017-1159 CVE-2016-9179 CVE-2016-4465 CVE-2016-4461 CVE-2016-4438 CVE-2016-4436 CVE-2016-4433 CVE-2016-4431 CVE-2016-4430 CVE-2016-2513 CVE-2016-2512 CVE-2016-2222 CVE-2016-2221 CVE-2016-2001 CVE-2016-1389 CVE-2016-0245 CVE-2016-0244 CVE-2016-0243 CVE-2015-8474 CVE-2015-7943 CVE-2015-7873 CVE-2015-7491 CVE-2015-7457 CVE-2015-7455 CVE-2015-7428 CVE-2015-7397 CVE-2015-5472 CVE-2015-5471 CVE-2015-5469 CVE-2015-5461 CVE-2015-4297 CVE-2015-4153 CVE-2015-4109 CVE-2015-3922 CVE-2015-3921 CVE-2015-3626 CVE-2015-3181 CVE-2015-3180 CVE-2015-3179 CVE-2015-3178 CVE-2015-3177 CVE-2015-3176 CVE-2015-3175 CVE-2015-3174 CVE-2015-3173 CVE-2015-2750 CVE-2015-2749 CVE-2015-2015 CVE-2015-2014 CVE-2015-1164 CVE-2015-0697 CVE-2015-0696 CVE-2014-1985 CVE-2011-1594 CVE-2009-4139

Action

Block

Alarm level

Minor