CVE-2009-2138

TBDev.NET 01-01-08 - Open Redirect via Returnto Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-2138. PoCs published by intern0t.

AI-analyzed exploit summary This advisory details multiple XSS and HTML injection vulnerabilities in TBDev 01-01-2008, including specific exploit URLs and affected functions. It provides technical insights into the vulnerabilities and suggests mitigation strategies.

Description

Multiple open redirect vulnerabilities in TBDev.NET 01-01-08 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the returnto parameter to login.php or (2) the returnto parameter in a delete action to news.php. NOTE: this can be leveraged for cross-site scripting (XSS) by redirecting to a data: URI.

Exploits (1)

exploitdb WRITEUP VERIFIED
by intern0t · textwebappsphp
https://www.exploit-db.com/exploits/8942

This advisory details multiple XSS and HTML injection vulnerabilities in TBDev 01-01-2008, including specific exploit URLs and affected functions. It provides technical insights into the vulnerabilities and suggests mitigation strategies.

Classification
Writeup 95%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: TBDev 01-01-2008
Auth required
Prerequisites: Access to vulnerable TBDev instance · Valid credentials for some exploits
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/8942

Scores

EPSS 0.0126
EPSS Percentile 65.8%

Details

CWE
CWE-20
Status published
Products (1)
tbdev/tbdev.net
Published Jun 19, 2009
Tracked Since Feb 18, 2026