Open redirect vulnerability in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
References
Configurations
History
21 Nov 2024, 01:53
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.kb.cert.org/vuls/id/345260 - US Government Resource | |
References | () https://kb.groundworkopensource.com/display/SUPPORT/SA6.7.0-1+Some+web+components+allow+bypass+of+role+access+controls - | |
References | () https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20130308-1_GroundWork_Monitoring_Multiple_high_risk_vulnerabilities_part2_wo_poc_v10.txt - |
Information
Published : 2013-05-08 12:09
Updated : 2024-11-21 01:53
NVD link : CVE-2013-3511
Mitre link : CVE-2013-3511
CVE.ORG link : CVE-2013-3511
JSON object : View
Products Affected
gwos
- groundwork_monitor
CWE
CWE-20
Improper Input Validation