CVE-2020-22840

🗓️ 09 Feb 2021 13:09:35Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 95 Views

Open redirect vuln in b2evolution CMS < 6.11.6 allows attacker to perform malicious redirects via redirect_to param in email_passthrough.php

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2020-22840	14 Nov 202406:08	–	circl
CNNVD	b2evolution Input Validation Error Vulnerability	9 Feb 202100:00	–	cnnvd
Cvelist	CVE-2020-22840	9 Feb 202113:09	–	cvelist
Exploit DB	b2evolution 6.11.6 - 'redirect_to' Open Redirect	11 Feb 202100:00	–	exploitdb
Nuclei	b2evolution CMS <6.11.6 - Open Redirect	6 Jun 202603:01	–	nuclei
NVD	CVE-2020-22840	9 Feb 202114:15	–	nvd
OpenVAS	b2evolution < 6.11.7 Multiple Vulnerabilities	11 Feb 202100:00	–	openvas
Packet Storm	b2evolution CMS 6.11.6 Open Redirection	10 Feb 202100:00	–	packetstorm
Prion	Open redirect	9 Feb 202114:15	–	prion
RedhatCVE	CVE-2020-22840	22 May 202515:19	–	redhatcve

NVD

Node

Source	Link
exploit-db	www.exploit-db.com/exploits/49554
packetstormsecurity	www.packetstormsecurity.com/files/161362/b2evolution-CMS-6.11.6-Open-Redirection.html
github	www.github.com/b2evolution/b2evolution/issues/102

21 Nov 2024 05:13Current

6.1Medium risk

Vulners AI Score6.1

CVSS 25.8

CVSS 3.16.1

EPSS0.42697