Open Redirection

2018-11-1602:32:49

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

EPSS

0.003

Percentile

65.7%

JSON

DotNetNuke.Core is vulnerable to open redirection. A remote attacker is able to redirect users to a malicious page and perform phishing attacks to steal confidential information such as a user’s username and password.

References

secunia.com/advisories/53493

www.dnnsoftware.com/platform/manage/security-center

www.securityfocus.com/bid/61809

EPSS

0.003

Percentile

65.7%

JSON

Related for VERACODE:7815