By HireHackking in HACKER
· 1 view
source: https://www.securityfocus.com/bid/48930/info
Sitecore CMS is prone to a URI-redirection vulnerability because the application fails to properly sanitize user-supplied input.
Successful exploits may redirect a user to a potentially malicious site; this may aid in phishing attacks.
Sitecore CMS versions 6.4.1 rev. 110324 and prior are vulnerable.
http://www.example.com/sitecore/shell/default.aspx?xmlcontrol=Application&url=http://www.example.com&ch=WindowChrome&ic=Applications%2f32x32%2fabout.png&he=About+Sitecore&ma=0&mi=0&re=0
Recommended Comments