.. / CVE-2015-2863

Exploit for Kaseya Virtual System Administrator - Open Redirect (CVE-2015-2863)

Description:

Kaseya Virtual System Administrator 7.x before 7.0.0.29, 8.x before 8.0.0.18, 9.0 before 9.0.0.14, and 9.1 before 9.1.0.4 are susceptible to an open redirect vulnerability. An attacker can redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Nuclei Template

View the template here CVE-2015-2863.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2015/CVE-2015-2863.yaml

References:

https://github.com/ARPSyndicate/cvemon
https://nvd.nist.gov/vuln/detail/CVE-2015-2863
http://www.kb.cert.org/vuls/id/919604
https://github.com/ARPSyndicate/kenzer-templates
https://github.com/pedrib/PoC/blob/3f927b957b86a91ce65b017c4b9c93d05e241592/advisories/Kaseya/kaseya-vsa-vuln.txt

.. / CVE-2015-2863 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Kaseya Virtual System Administrator - Open Redirect (CVE-2015-2863)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2015-2863