cve/2012/CVE-2012-2270.md

CVE-2012-2270

Description

Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_url parameter.

POC

Reference

• http://packetstormsecurity.org/files/111956/ownCloud-3.0.0-Cross-Site-Scripting.html

Github

No PoCs found on GitHub currently.