Kaseya Virtual System Administrator - Open Redirect

🗓️ 23 Jun 2026 05:08:33Reported by ProjectDiscoveryType

Kaseya VSA - Open Redirect vulnerability in versions 7.x, 8.x, 9.0, and 9.1 allows attackers to conduct phishing attacks by redirecting users to arbitrary websites via unspecified vectors. Apply the latest security patches and updates for remediation

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2015-2863	27 Oct 202400:00	–	circl
CNVD	Kaseya Virtual System Administrator Open Redirect Vulnerability	22 Jul 201500:00	–	cnvd
CVE	CVE-2015-2863	20 Jul 201523:00	–	cve
Cvelist	CVE-2015-2863	20 Jul 201523:00	–	cvelist
Exploit DB	Kaseya Virtual System Administrator (VSA) - Multiple Vulnerabilities (1)	15 Jul 201500:00	–	exploitdb
exploitpack	Kaseya Virtual System Administrator (VSA) - Multiple Vulnerabilities (1)	15 Jul 201500:00	–	exploitpack
NVD	CVE-2015-2863	20 Jul 201523:59	–	nvd
OpenVAS	Kaseya Virtual System Administrator Multiple Vulnerabilities - Active Check	17 Jul 201500:00	–	openvas
Prion	Open redirect	20 Jul 201523:59	–	prion
securityvulns	Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)	27 Jul 201500:00	–	securityvulns

Source	Link
github	www.github.com/pedrib/PoC/blob/3f927b957b86a91ce65b017c4b9c93d05e241592/advisories/Kaseya/kaseya-vsa-vuln.txt
kb	www.kb.cert.org/vuls/id/919604
nvd	www.nvd.nist.gov/vuln/detail/CVE-2015-2863
github	www.github.com/ARPSyndicate/kenzer-templates
github	www.github.com/ARPSyndicate/cvemon

id: CVE-2015-2863

info:
  name: Kaseya Virtual System Administrator - Open Redirect
  author: 0x_Akoko,AmirHossein Raeisi
  severity: medium
  description: |
    Kaseya Virtual System Administrator 7.x before 7.0.0.29, 8.x before 8.0.0.18, 9.0 before 9.0.0.14, and 9.1 before 9.1.0.4 are susceptible to an open redirect vulnerability. An attacker can redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
  impact: |
    Attackers can redirect users to malicious sites, facilitating phishing attacks and potential credential theft.
  remediation: |
    Update to version 7.0.0.29, 8.0.0.18, 9.0.0.14, or 9.1.0.4 or later.
  reference:
    - https://github.com/pedrib/PoC/blob/3f927b957b86a91ce65b017c4b9c93d05e241592/advisories/Kaseya/kaseya-vsa-vuln.txt
    - http://www.kb.cert.org/vuls/id/919604
    - https://nvd.nist.gov/vuln/detail/CVE-2015-2863
    - https://github.com/ARPSyndicate/kenzer-templates
    - https://github.com/ARPSyndicate/cvemon
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:P/A:N
    cvss-score: 4.3
    cve-id: CVE-2015-2863
    cwe-id: CWE-601
    epss-score: 0.10317
    epss-percentile: 0.95112
    cpe: cpe:2.3:a:kaseya:virtual_system_administrator:*:*:*:*:*:*:*:*
  metadata:
    max-request: 2
    vendor: kaseya
    product: virtual_system_administrator
  tags: cve2015,cve,redirect,kaseya,vkev,vuln

http:
  - method: GET
    path:
      - '{{BaseURL}}/inc/supportLoad.asp?urlToLoad=http://oast.me'
      - '{{BaseURL}}/vsaPres/Web20/core/LocalProxy.ashx?url=http://oast.me'

    stop-at-first-match: true
    matchers:
      - type: regex
        part: header
        regex:
          - '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)(?:[a-zA-Z0-9\-_\.@]*)oast\.me\/?(\/|[^.].*)?$' # https://regex101.com/r/idfD2e/1
# digest: 490a004630440220529c7d474106bf4402dd13aba0732cc1f5567eb7f32c620519be2a2563afceee0220676c85b9a0bb7f14ce1c24f8e8a70f0b0d7857847294a1633dbc41cc83a98c35:922c64590222798bb761d5b6d8e72950

04 Feb 2026 07:00Current

6Medium risk

Vulners AI Score6

CVSS 24.3

EPSS0.10317