Description
Multiple open redirect vulnerabilities in Pligg 1.0.2 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the (1) return parameter to pligg/login.php and the (2) HTTP Referer header to user_settings.php.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2009-4751 | Multiple open redirect vulnerabilities in Pligg 1.0.2 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the (1) return parameter to pligg/login.php and the (2) HTTP Referer header to user_settings.php. |
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-09-17T04:14:45.890Z
Reserved: 2010-04-21T00:00:00.000Z
Link: CVE-2009-4788
No data.
Status : Modified
Published: 2010-04-21T14:30:01.020
Modified: 2026-06-16T23:14:21.597
Link: CVE-2009-4788
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-20
Improper Input Validation
EUVD