Handy Address Book Server 3.4 URI redirection vulnerability

2017.04.18

malwrforensics (US)

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

# Exploit Title: Handy Address Book Server 3.4 URI redirection vulnerability
# Date: 2017/04/15
# Exploit Author: malwrforensics
# Vendor Homepage: https://www.handyaddressbook.com/
# Software Link: https://www.handyaddressbook.com/downloads/AHABS34.exe
# Version: 3.4.0
# Tested on: Windows 7 x86

The Handy Address Book Server v3.4.0 is vulnerable to a URI redirection vulnerability because the CALLURL parameter isn't properly sanitized.

Example:
http://server/?CMD=EDITOR&BOOK=testbook&NID=1&INPOPUP=0&CALLURL=http://new-site/alert.html

Once the users clicks save/cancel they will be redirected to the "new-site".

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Handy Address Book Server 3.4 URI redirection vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.