Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-1000163 PoC — Phoenix Framework 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2017/CVE-2017-1000163.yaml
Associated Vulnerability
Title:Phoenix Framework 安全漏洞 (CVE-2017-1000163)
Description:Phoenix Framework是一款集资源管理与测试为一体的Web自动化测试框架。该框架支持无脚本执行、无人值守执行和自由定制等执行模式。 Phoenix Framework中的存在安全漏洞。攻击者可利用该漏洞实施钓鱼攻击或社会工程学攻击。以下版本受到影响:Phoenix Framework 1.0.0版本至1.0.4版本,1.1.0版本至1.1.6版本,1.2.0版本,1.2.2版本,1.3.0-rc.0版本。
Description
Phoenix Framework versions 1.0.0 through 1.0.4, 1.1.0 through 1.1.6, 1.2.0, 1.2.2 and 1.3.0-rc.0 contain an open redirect vulnerability, which may result in phishing or social engineering attacks.
File Snapshot

 id: CVE-2017-1000163

info:
  name: Phoenix Framework - Open Redirect
  author: 0x_Akoko
  severity:

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.