CVE-2014-4851

2022-10-0316:20:46

mitre

www.cve.org

foecms

open redirect vulnerability

remote attackers

phishing attacks

url parameter

6.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.4%

JSON

Open redirect vulnerability in msg.php in FoeCMS allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the r parameter.

References

packetstormsecurity.com/files/127358/FoeCMS-XSS-SQL-Injection-Open-Redirect.html