CVE-2009-0347

NUCLEI

Autonomy Ultraseek - Open Redirect

Title source: llm

Description

Open redirect vulnerability in cs.html in the Autonomy (formerly Verity) Ultraseek search engine allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter.

Exploits (2)

exploitdb WRITEUP VERIFIED

by buzzy · textwebappsphp

https://www.exploit-db.com/exploits/32766

View Code ZIP pw:eip

nomisec SCANNER

by Cappricio-Securities · poc

https://github.com/Cappricio-Securities/CVE-2009-0347

View Code ZIP pw:eip

Nuclei Templates (1)

Autonomy Ultraseek - Open Redirect

MEDIUMby ctflearner

References (5)

[Various Sources] http://sunbeltblog.blogspot.com/2009/01/constant-stream-of-ultraseek-redirects.html

[US Government Resource] http://www.kb.cert.org/vuls/id/202753

[Various Sources] http://www.ultraseek.com/forums/thread.jspa?messageID=9818

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/48336

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/33500

Scores

EPSS 0.0364

EPSS Percentile 87.9%

Details

CWE

CWE-59

Status published

Products (1)

autonomy/ultraseek _nil_

Published Jan 29, 2009

Tracked Since Feb 18, 2026