映射到 CWE-601 的搜索结果 (17)

CVE-2016-1213(发布:2017-04-20 14:59:00)NMS
CVSS5.8

[原文]The "Scheduler" function in Cybozu Garoon before 4.2.2 allows remote attackers to redirect users to arbitrary websites.

CVE-2016-0228(发布:2017-04-17 17:59:00)NMS
CVSS4.9

[原文]IBM Marketing Platform 10.0 could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in various scripts. An attacker could exploit this vulnerability to redirect a victim to arbitrary Web sites. IBM X-Force ID: 110236.

CVE-2016-4334(发布:2017-04-09 23:59:01)NM
CVSS5.8

[原文]Jive before 2016.3.1 has an open redirect from the external-link.jspa page.

CVE-2015-6501(发布:2017-01-12 18:59:00)NMS
CVSS5.8

[原文]Open redirect vulnerability in the Console in Puppet Enterprise before 2015.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the string parameter.

CVE-2016-3174(发布:2016-12-15 01:59:03)NMP
CVSS4.3

[原文]An issue was discovered in Open-Xchange OX AppSuite before 7.8.0-rev27. The "defer" servlet offers to redirect a client to a specified URL. Since some checks were missing, arbitrary URLs could be provided as redirection target. Users can be tricked to follow a link to a trustworthy domain but end up at an unexpected service later on. This vulnerability can be used to prepare and enhance phishing attacks.

CVE-2016-3047(发布:2016-12-01 06:59:08)NMS
CVSS4.9

[原文]Open redirect vulnerability in IBM FileNet Workplace 4.0.2 through 4.0.2.14 IF001 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

首页上一页123下一页尾页 第2页 / 共3页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站