Open redirect vulnerability in api.php in SiteEngine 5.x allows user-assisted remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the forward parameter in a logout action.
References
Configurations
History
No history.
Information
Published : 2010-12-01 16:06
Updated : 2024-02-28 11:41
NVD link : CVE-2008-7269
Mitre link : CVE-2008-7269
CVE.ORG link : CVE-2008-7269
JSON object : View
Products Affected
boka
- siteengine
CWE
CWE-20
Improper Input Validation