Lucene search
K

Plesk Obsidian <=18.0.49 - Open Redirect

🗓️ 02 Feb 2023 09:44:06Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 384 Views

Plesk Obsidian <=18.0.49 - Open Redirect vulnerability enables attackers to redirect users to malicious websites and access user credentials

Related
Refs
Code
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for Open Redirect in Plesk Obsidian
26 May 202406:56
githubexploit
GithubExploit
Exploit for Cross-site Scripting in Redhat Keycloak
30 Dec 202023:52
githubexploit
BDU FSTEC
The vulnerability of the user interface of the Plesk Obsidian hosting platform allows a hacker to redirect users to arbitrary websites.
1 Nov 202300:00
bdu_fstec
Circl
CVE-2023-24044
21 Jul 202316:07
circl
CNNVD
Plesk Obsidian 输入验证错误漏洞
22 Jan 202300:00
cnnvd
CVE
CVE-2023-24044
22 Jan 202300:00
cve
Cvelist
CVE-2023-24044
22 Jan 202300:00
cvelist
NVD
CVE-2023-24044
22 Jan 202303:15
nvd
OSV
CVE-2023-24044
22 Jan 202303:15
osv
Prion
Design/Logic Flaw
22 Jan 202303:15
prion
Rows per page
id: CVE-2023-24044

info:
  name: Plesk Obsidian <=18.0.49 - Open Redirect
  author: pikpikcu
  severity: medium
  description: |
    Plesk Obsidian through 18.0.49 contains an open redirect vulnerability via the login page. An attacker can redirect users to malicious websites via a host request header and thereby access user credentials and execute unauthorized operations. NOTE: The vendor's position is "the ability to use arbitrary domain names to access the panel is an intended feature."
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to redirect users to malicious websites, leading to phishing attacks or the theft of sensitive information.
  remediation: |
    Upgrade Plesk Obsidian to a version higher than 18.0.49 to mitigate the vulnerability.
  reference:
    - https://portswigger.net/web-security/host-header/exploiting
    - https://medium.com/@jetnipat.tho/cve-2023-24044-10e48ab940d8
    - https://gist.github.com/TJetnipat/02b3854543b7ec95d54a8de811f2e8ae
    - https://nvd.nist.gov/vuln/detail/CVE-2023-24044
    - https://support.plesk.com/hc/en-us/articles/10254625170322-Vulnerability-CVE-2023-24044
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2023-24044
    cwe-id: CWE-601
    epss-score: 0.00174
    epss-percentile: 0.54488
    cpe: cpe:2.3:a:plesk:obsidian:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: plesk
    product: obsidian
    shodan-query:
      - title:"Plesk Obsidian"
      - http.html:"plesk obsidian"
      - http.title:"plesk obsidian"
    fofa-query:
      - title="Plesk Obsidian"
      - body="plesk obsidian"
      - title="plesk obsidian"
    google-query: intitle:"plesk obsidian"
  tags: cve2023,cve,header,injection,plesk,obsidian

http:
  - method: GET
    path:
      - "{{BaseURL}}/login.php"

    headers:
      Host: "oast.me"

    matchers-condition: and
    matchers:
      - type: word
        part: location
        words:
          - 'https://oast.me/login_up.php'

      - type: status
        status:
          - 303
# digest: 4a0a0047304502201e96bb72bfee3571633a03bc90b7185cc84c1dd42e4010efd05bbb90977c10d9022100f403c561899a6678787b14c9494bba7dec095ae4d8d656c64714922bf0110808:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

01 Dec 2024 13:57Current
6.3Medium risk
Vulners AI Score6.3
EPSS0.02157
384