CVE-2014-9343
Snowfox CMS 1.0 is affected by an open redirect in modules/system/controller/selectlanguage.class.php, exploitable via the rd parameter in a submit action. The open-redirect occurs because user-supplied rd is used to perform a header("Location:") redirect without proper validation, enabling poten...