Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2014-9180 PoC — Eleanor CMS 代码注入漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2014/CVE-2014-9180.yaml
Associated Vulnerability
Title:Eleanor CMS 代码注入漏洞 (CVE-2014-9180)
Description:Eleanor CMS是一套内容管理系统(CMS)。 Eleanor CMS的go.php脚本中存在开放重定向漏洞。远程攻击者可借助‘QUERY_STRING’参数中的URL利用该漏洞将用户重定向到任意Web站点,实施钓鱼攻击。
Description
Open redirect vulnerability in go.php in Eleanor CMS allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the QUERY_STRING.
File Snapshot

 id: CVE-2014-9180

info:
  name: Eleanor CMS - Open Redirect
  author: Shankar Acharya
  severity: m

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.