Sanluan PublicCMS Open Redirect Vulnerability in Preview.html

An open redirect vulnerability has been identified in Sanluan PublicCMS versions through 5.202506.a. The issue resides in the file 'publiccms-parent/publiccms/src/main/resources/templates/admin/cmsDiy/preview.html', where the 'url' argument can be manipulated to redirect users to external sites without proper validation. This vulnerability can be exploited remotely and has been publicly disclosed, with an available proof-of-concept exploit.

Impact

Exploitation of this vulnerability leads to an open redirect, allowing attackers to redirect users to malicious sites, potentially facilitating phishing attacks.

Reproduction

To reproduce this vulnerability, an admin user can access 'admin/cmsDiy/preview.html' and manipulate the 'url' parameter to include a destination URL, such as 'google.com'. When the 'VIEW' button is clicked, the user will be redirected to the specified URL, demonstrating the open redirect flaw.

Remediation

Users are advised to update to the latest version of Sanluan PublicCMS, where this vulnerability has been patched.