CVE-2018-14474 - CERT CVE
ID CVE-2018-14474
Sažetak views/auth.go in Orange Forum 1.4.0 allows Open Redirection via the next parameter to /login or /signup.
Reference
CVSS
Base: 5.8
Impact: 4.9
Exploitability:8.6
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL PARTIAL NONE
CVSS vektor AV:N/AC:M/Au:N/C:P/I:P/A:N
Zadnje važnije ažuriranje 29-10-2018 - 16:48
Objavljeno 20-07-2018 - 18:29