| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
| Exploit for Open Redirect in Plesk Obsidian | 26 May 202406:56 | – | githubexploit | |
| Exploit for Cross-site Scripting in Redhat Keycloak | 30 Dec 202023:52 | – | githubexploit | |
| The vulnerability of the user interface of the Plesk Obsidian hosting platform allows a hacker to redirect users to arbitrary websites. | 1 Nov 202300:00 | – | bdu_fstec | |
| CVE-2023-24044 | 21 Jul 202316:07 | – | circl | |
| Plesk Obsidian 输入验证错误漏洞 | 22 Jan 202300:00 | – | cnnvd | |
| CVE-2023-24044 | 22 Jan 202300:00 | – | cve | |
| CVE-2023-24044 | 22 Jan 202300:00 | – | cvelist | |
| CVE-2023-24044 | 22 Jan 202303:15 | – | nvd | |
| CVE-2023-24044 | 22 Jan 202303:15 | – | osv | |
| Design/Logic Flaw | 22 Jan 202303:15 | – | prion |
id: CVE-2023-24044
info:
name: Plesk Obsidian <=18.0.49 - Open Redirect
author: pikpikcu
severity: medium
description: |
Plesk Obsidian through 18.0.49 contains an open redirect vulnerability via the login page. An attacker can redirect users to malicious websites via a host request header and thereby access user credentials and execute unauthorized operations. NOTE: The vendor's position is "the ability to use arbitrary domain names to access the panel is an intended feature."
impact: |
Successful exploitation of this vulnerability could allow an attacker to redirect users to malicious websites, leading to phishing attacks or the theft of sensitive information.
remediation: |
Upgrade Plesk Obsidian to a version higher than 18.0.49 to mitigate the vulnerability.
reference:
- https://portswigger.net/web-security/host-header/exploiting
- https://medium.com/@jetnipat.tho/cve-2023-24044-10e48ab940d8
- https://gist.github.com/TJetnipat/02b3854543b7ec95d54a8de811f2e8ae
- https://nvd.nist.gov/vuln/detail/CVE-2023-24044
- https://support.plesk.com/hc/en-us/articles/10254625170322-Vulnerability-CVE-2023-24044
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2023-24044
cwe-id: CWE-601
epss-score: 0.00174
epss-percentile: 0.54488
cpe: cpe:2.3:a:plesk:obsidian:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: plesk
product: obsidian
shodan-query:
- title:"Plesk Obsidian"
- http.html:"plesk obsidian"
- http.title:"plesk obsidian"
fofa-query:
- title="Plesk Obsidian"
- body="plesk obsidian"
- title="plesk obsidian"
google-query: intitle:"plesk obsidian"
tags: cve2023,cve,header,injection,plesk,obsidian
http:
- method: GET
path:
- "{{BaseURL}}/login.php"
headers:
Host: "oast.me"
matchers-condition: and
matchers:
- type: word
part: location
words:
- 'https://oast.me/login_up.php'
- type: status
status:
- 303
# digest: 4a0a0047304502201e96bb72bfee3571633a03bc90b7185cc84c1dd42e4010efd05bbb90977c10d9022100f403c561899a6678787b14c9494bba7dec095ae4d8d656c64714922bf0110808:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation