Lucene search

K
cve[email protected]CVE-2011-0908
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-0908

2022-10-0316:15:19
CWE-20
web.nvd.nist.gov
22
cve-2011-0908
open redirect vulnerability
vanilla forums
security vulnerability
nvd

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

0.022

Percentile

89.6%

Open redirect vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the Target parameter to an unspecified component, a different vulnerability than CVE-2011-0526.

Affected configurations

NVD
Node
vanillaforumsvanillaRange2.0.17.5
OR
vanillaforumsvanillaMatch2.0.9
OR
vanillaforumsvanillaMatch2.0.10
OR
vanillaforumsvanillaMatch2.0.11
OR
vanillaforumsvanillaMatch2.0.12
OR
vanillaforumsvanillaMatch2.0.13
OR
vanillaforumsvanillaMatch2.0.14
OR
vanillaforumsvanillaMatch2.0.15
OR
vanillaforumsvanillaMatch2.0.16
OR
vanillaforumsvanillaMatch2.0.17
OR
vanillaforumsvanillaMatch2.0.17.1
OR
vanillaforumsvanillaMatch2.0.17.2
OR
vanillaforumsvanillaMatch2.0.17.3
OR
vanillaforumsvanillaMatch2.0.17.4
VendorProductVersionCPE
vanillaforumsvanilla2.0.14cpe:/a:vanillaforums:vanilla:2.0.14:::
vanillaforumsvanilla2.0.16cpe:/a:vanillaforums:vanilla:2.0.16:::
vanillaforumsvanilla2.0.17cpe:/a:vanillaforums:vanilla:2.0.17:::
vanillaforumsvanilla2.0.17.1cpe:/a:vanillaforums:vanilla:2.0.17.1:::
vanillaforumsvanilla2.0.9cpe:/a:vanillaforums:vanilla:2.0.9:::
vanillaforumsvanilla2.0.15cpe:/a:vanillaforums:vanilla:2.0.15:::
vanillaforumsvanilla2.0.17.4cpe:/a:vanillaforums:vanilla:2.0.17.4:::
vanillaforumsvanillacpe:/a:vanillaforums:vanilla::::
vanillaforumsvanilla2.0.13cpe:/a:vanillaforums:vanilla:2.0.13:::
vanillaforumsvanilla2.0.11cpe:/a:vanillaforums:vanilla:2.0.11:::
Rows per page:
1-10 of 141

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

0.022

Percentile

89.6%

Related for CVE-2011-0908