CVE-2012-4032
NUCLEIWebsitePanel < 1.2.2.1 - Open Redirect via ReturnUrl Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2012-4032. PoCs published by Anastasios Monachos. A Nuclei detection template is also available.
AI-analyzed exploit summary The exploit describes a URI-redirection vulnerability in WebsitePanel due to improper input sanitization. Attackers can craft malicious URLs to redirect users to arbitrary domains, aiding in phishing attacks.
Description
Open redirect vulnerability in the login page in WebsitePanel before 1.2.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in ReturnUrl to Default.aspx.
Exploits (1)
The exploit describes a URI-redirection vulnerability in WebsitePanel due to improper input sanitization. Attackers can craft malicious URLs to redirect users to arbitrary domains, aiding in phishing attacks.
Nuclei Templates (1)
title:"WebsitePanel" html:"login" || http.title:"websitepanel" html:"login"
title="websitepanel" html:"login"