Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2012-6499 PoC — WordPress Age Verification插件 ‘redirect_to’ 参数URL重定向漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2012/CVE-2012-6499.yaml
Associated Vulnerability
Title:WordPress Age Verification插件 ‘redirect_to’ 参数URL重定向漏洞 (CVE-2012-6499)
Description:WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress中的Age Verification插件0.4和较早的版本中的age-verification.php脚本中存在开放重定向漏洞。通过redirect_to参数中的URL,远程攻击者利用该漏洞将用户重定向至任意网站进行钓鱼攻击。
Description
Open redirect vulnerability in age-verification.php in the Age Verification plugin 0.4 and earlier for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_to parameter.
File Snapshot

 id: CVE-2012-6499

info:
  name: WordPress Plugin Age Verification v0.4 - Open Redirect
  author: ct

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.