4 matches found
CVE-2020-22840
Open redirect vulnerability in b2evolution CMS version prior to 6.11.6 allows an attacker to perform malicious open redirects to an attacker controlled resource via redirectto parameter in emailpassthrough.php...
CVE-2020-22840
creationtimestamp| type| source ---|---|--- 2024-11-14 06:08:09+00:00| seen| MISP/8ab39244-bb6c-4d97-b634-dea84993158e...
b2evolution < 6.11.7 Multiple Vulnerabilities
b2evolution is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-22840
CVE-2020-22840 affects b2evolution CMS prior to 6.11.6. It is an open redirect in email_passthrough.php via the redirect_to parameter, enabling redirects to attacker-controlled sites. Reported impact includes phishing and data exposure risks; PoCs exist (e.g., exploit-db 49554) and public templat...