CVE-2020-22840
published 2021-02-09CVE-2020-22840: Open redirect vulnerability in b2evolution CMS version prior to 6.11.6 allows an attacker to perform malicious open redirects to an attacker controlled…
PriorityP344medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
13.82%
96.1th percentile
Open redirect vulnerability in b2evolution CMS version prior to 6.11.6 allows an attacker to perform malicious open redirects to an attacker controlled resource via redirect_to parameter in email_passthrough.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| b2evolution | b2evolution | < 6.11.6 | 6.11.6 |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
b2evolution 6.11.6 - 'redirect_to' Open Redirect
exploitdb·2021-02-11·CVSS 6.1
CVE-2020-22840 [MEDIUM] b2evolution 6.11.6 - 'redirect_to' Open Redirect
b2evolution 6.11.6 - 'redirect_to' Open Redirect
---
# Exploit Title: b2evolution 6.11.6 - 'redirect_to' Open Redirect
# Date: 10/02/2021
# Exploit Author: Soham Bakore, Nakul Ratti
# Vendor Homepage: https://b2evolution.net/
# Software Link: https://b2evolution.net/downloads/6-11-6-stable?download=12405
# Version: 6.11.6
# Tested on: latest version of Chrome, Firefox on Windows and Linux
# CVE : CVE-2020-22840
--------------------------Proof of Concept-----------------------
1. Send the following link : http://127.0.0.1/htsrv/email_passthrough.php?email_ID=1&type=link&email_key=5QImTaEHxmAzNYyYvENAtYHsFu7fyotR&redirect_to=http%3A%2F%2Fgoogle.com to the unsuspecting user
2. The user will be redirected to Google.com or any other attacker controlled domain
3. This can be used to perfor
Nuclei
b2evolution CMS <6.11.6 - Open Redirect
nuclei·CVSS 6.1
CVE-2020-22840 [MEDIUM] b2evolution CMS <6.11.6 - Open Redirect
b2evolution CMS <6.11.6 - Open Redirect
b2evolution CMS before 6.11.6 contains an open redirect vulnerability via the redirect_to parameter in email_passthrough.php. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
Template:
id: CVE-2020-22840
info:
name: b2evolution CMS <6.11.6 - Open Redirect
author: geeknik
severity: medium
description: b2evolution CMS before 6.11.6 contains an open redirect vulnerability via the redirect_to parameter in email_passthrough.php. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
impact: |
This vulnerability can be exploited by attackers to trick users into vi
http://packetstormsecurity.com/files/161362/b2evolution-CMS-6.11.6-Open-Redirection.htmlhttps://github.com/b2evolution/b2evolution/issues/102https://www.exploit-db.com/exploits/49554http://packetstormsecurity.com/files/161362/b2evolution-CMS-6.11.6-Open-Redirection.htmlhttps://github.com/b2evolution/b2evolution/issues/102https://www.exploit-db.com/exploits/49554
2021-02-09
Published