Multiple open redirect vulnerabilities in Joomla! 1.5 before 1.5.7 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a “passed in” URL.
CPE | Name | Operator | Version |
---|---|---|---|
joomla/framework | lt | 1.5.7 |
marc.info/?l=oss-security&m=122115344915232&w=2
marc.info/?l=oss-security&m=122118210029084&w=2
marc.info/?l=oss-security&m=122152798516853&w=2
securityreason.com/securityalert/4275
exchange.xforce.ibmcloud.com/vulnerabilities/45071
github.com/advisories/GHSA-9qr2-fx2g-pfvh
nvd.nist.gov/vuln/detail/CVE-2008-4104
web.archive.org/web/20081219152017/developer.joomla.org/security/news/274-20080904-core-redirect-spam.html