CVE-2008-7269 PoC — Boka SiteEngine api.php文件输入验证漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2008/CVE-2008-7269.yaml

Associated Vulnerability

Title:Boka SiteEngine api.php文件输入验证漏洞 (CVE-2008-7269)
Description:Open redirect vulnerability in api.php in SiteEngine 5.x allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the forward parameter in a logout action.

Description

Open redirect vulnerability in api.php in SiteEngine 5.x allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the forward parameter in a logout action.

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →