exploitDog

CVE-2005-4052

Опубликовано: 07 дек. 2005

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

e107 0.6174 allows remote attackers to redirect users to other web sites via the download parameter in rate.php, which is used after a user submits a file download rating. NOTE: in the default installation, the e_BASE variable restricts the redirection to the same web site.

Ссылки

http://secunia.com/advisories/17890/
Exploit
Vendor Advisory
http://securityreason.com/securityalert/229
http://www.securityfocus.com/archive/1/418577/100/0/threaded
http://secunia.com/advisories/17890/
Exploit
Vendor Advisory
http://securityreason.com/securityalert/229
http://www.securityfocus.com/archive/1/418577/100/0/threaded

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:e107:e107:0.6174:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00396

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-8j35-hhmj-p55m

github

почти 4 года назад

e107 0.6174 allows remote attackers to redirect users to other web sites via the download parameter in rate.php, which is used after a user submits a file download rating. NOTE: in the default installation, the e_BASE variable restricts the redirection to the same web site.

EPSS

Процентиль: 60%

0.00396

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other