2 matches found
Encore Discovery Solution Multiple Vulnerability Disclosure
Product: Encore Discovery Solution Vendor: Innovative Interfaces Inc Vulnerable Version: 4.3 Tested Version: 4.3 Vendor Notification: June 19, 2014 Public Disclosure: August 26, 2014 Vulnerability Type: Open Redirect CWE-601 CVE Reference: CVE-2014-5127 Risk Level: Medium CVSSv2 Base Score: 4.3...
CVE-2014-5127
CVE-2014-5127 is an Open Redirect vulnerability in Encore Discovery Solution 4.3 by Innovative Interfaces Inc. Attackers can redirect users to attacker-controlled sites via a crafted URL parameter, enabling phishing attempts. The SecurityVulns entry confirms product, vulnerable version (4.3), and...