CVE-2015-1060

2015-01-16T15:59:00
ID CVE-2015-1060
Type cve
Reporter cve@mitre.org
Modified 2017-09-08T01:29:00

Description

Open redirect vulnerability in lib/Cake/Controller/Controller.php in AdaptCMS 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the HTTP Referer header. <a href="http://cwe.mitre.org/data/definitions/601.html">CWE-601: URL Redirection to Untrusted Site ('Open Redirect')</a>