漏洞描述
Microsoft .NET Framework某些版本中,ASP.NET子系统的Forms Authentication中存在重定向漏洞,从而允许远程攻击者将用户重定向到任意网站,并借助伪造的返回URL进行网络钓鱼攻击。
Microsoft ASP.NET Forms认证重定向漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2017-20192: Formidable Forms < 2.05.02 - Cross-Site Scripting
- POC wp-caldera-forms-xss: Caldera Forms <= 1.5.4 - Cross-Site Scripting
- POC CVE-2022-0879: Caldera Forms < 1.9.7 - Reflected Cross-Site Scripting
- POC sharepoint-lists-api-disclosure: Microsoft SharePoint - List API Disclosure
- POC sharepoint-layouts-disclosure: Microsoft SharePoint - Layouts Disclosure
- POC sharepoint-masterpage-disclosure: Microsoft SharePoint - Master Page Disclosure
- POC sharepoint-site-metadata-disclosure: Microsoft SharePoint - Site Metadata Disclosure
- POC sharepoint-sitepages-disclosure: Microsoft SharePoint - Site Pages Disclosure
- POC CVE-2025-49706: Microsoft SharePoint Server - Authentication Bypass
- (CVE-2025-53770)Microsoft SharePoint Server反序列化漏洞允许远程代码执行
- Microsoft Web Deploy 需授权 反序列化漏洞 可导致任意代码执行
- (CVE-2023-20516) ASP权限不足处理不当漏洞
- POC CVE-2019-0604: Microsoft SharePoint - Remote Code Execution