Open redirect

2013-09-2319:55:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.2%

JSON

Open redirect vulnerability in JForum 2.1.9 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the returnPath parameter in a validateLogin action to jforum.page.

CPENameOperatorVersion
jforumeq2.1.9

CPE	Name	Operator	Version
	jforum	eq	2.1.9

References

www.zerodaylab.com/zdl-advisories/2012-5338.html