Lucene search

CVE-2020-24550

🗓️ 31 Mar 2021 22:14:15Reported by mitreType

cve🔗 web.nvd.nist.gov👁 50 Views🌐 WEB

An Open Redirect vulnerability in EpiServer Find before 13.2.7 allows an attacker to redirect users to untrusted websites

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
NVD	CVE-2020-24550	31 Mar 202122:15	–	nvd
Cvelist	CVE-2020-24550	31 Mar 202121:32	–	cvelist
CNVD	Elastic EpiServer Find Arbitrary Redirection Vulnerability	2 Apr 202100:00	–	cnvd
Prion	Open redirect	31 Mar 202122:15	–	prion
Nuclei	EpiServer Find <13.2.7 - Open Redirect	2 Apr 202108:41	–	nuclei

Nvd

Node

episerver findRange<13.2.7

Source	Link
labs	www.labs.nettitude.com/blog/cve-2020-24550-open-redirect-in-episerver-find/

Parameter	Position	Path	Description	CWE
_t_redirect	query param	/find_v2/_click	An Open Redirect vulnerability that allows redirection to untrusted sites through the _t_redirect parameter.	CWE-601

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Mar 2021 22:15Current

6.1Medium risk

Vulners AI Score6.1

CVSS25.8

CVSS36.1

EPSS0.53789

CWE-601