exploitDog

CVE-2014-8870

Опубликовано: 15 янв. 2015

Источник: nvd

CVSS2: 5.8

EPSS Низкий

Описание

Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin before 1.1.2 for Woltlab Burning Board 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the board_url parameter.

Комментарий

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:tapatalk:tapatalk:1.0.0:*:*:*:*:wotlab_burning_board:*:*

cpe:2.3:a:tapatalk:tapatalk:1.0.1:*:*:*:*:wotlab_burning_board:*:*

cpe:2.3:a:tapatalk:tapatalk:1.0.2:*:*:*:*:wotlab_burning_board:*:*

cpe:2.3:a:tapatalk:tapatalk:1.1.0:*:*:*:*:wotlab_burning_board:*:*

cpe:2.3:a:tapatalk:tapatalk:1.1.1:*:*:*:*:wotlab_burning_board:*:*

EPSS

Процентиль: 48%

0.00253

Низкий

5.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9xv3-rrw4-9qm8

github

больше 3 лет назад

Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin before 1.1.2 for Woltlab Burning Board 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the board_url parameter.

EPSS

Процентиль: 48%

0.00253

Низкий

5.8 Medium

CVSS2

Дефекты

NVD-CWE-Other