.. / CVE-2009-0347

Exploit for Autonomy Ultraseek - Open Redirect (CVE-2009-0347)

Description:

Open redirect vulnerability in cs.html in the Autonomy (formerly Verity) Ultraseek search engine allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter.

Nuclei Template

View the template here CVE-2009-0347.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2009/CVE-2009-0347.yaml

References:

https://www.exploit-db.com/exploits/32766
https://nvd.nist.gov/vuln/detail/CVE-2009-0347
http://sunbeltblog.blogspot.com/2009/01/constant-stream-of-ultraseek-redirects.html
https://www.kb.cert.org/vuls/id/202753
https://exchange.xforce.ibmcloud.com/vulnerabilities/48336

.. / CVE-2009-0347 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Autonomy Ultraseek - Open Redirect (CVE-2009-0347)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2009-0347