Open redirect vulnerability in index.php in ocPortal before 7.1.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter.
References
Link | Resource |
---|---|
http://ocportal.com/site/news/view/new-releases/ocportal-7-1-6-released.htm | Vendor Advisory |
http://ocportal.com/site/news/view/ocportal-security-update.htm | Patch Vendor Advisory |
http://ocportal.com/site/news/view/new-releases/ocportal-7-1-6-released.htm | Vendor Advisory |
http://ocportal.com/site/news/view/ocportal-security-update.htm | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:44
Type | Values Removed | Values Added |
---|---|---|
References | () http://ocportal.com/site/news/view/new-releases/ocportal-7-1-6-released.htm - Vendor Advisory | |
References | () http://ocportal.com/site/news/view/ocportal-security-update.htm - Patch, Vendor Advisory |
Information
Published : 2012-10-01 23:55
Updated : 2024-11-21 01:44
NVD link : CVE-2012-5234
Mitre link : CVE-2012-5234
CVE.ORG link : CVE-2012-5234
JSON object : View
Products Affected
ocportal
- ocportal
CWE
CWE-20
Improper Input Validation