CVE-2009-4788
Multiple open redirect vulnerabilities in Pligg 1.0.2 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the 1 return parameter to pligg/login.php and the 2 HTTP Referer header to usersettings.php...