Описание
Open redirect vulnerability in api.php in SiteEngine 5.x allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the forward parameter in a logout action.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:boka:siteengine:5.0:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04298
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
Open redirect vulnerability in api.php in SiteEngine 5.x allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the forward parameter in a logout action.
EPSS
Процентиль: 89%
0.04298
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-20