Vulnerability Details CVE-2008-4104
Multiple open redirect vulnerabilities in Joomla! 1.5 before 1.5.7 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a "passed in" URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.1%
CVSS Severity
CVSS v2 Score 5.8
References
- http://developer.joomla.org/security/news/274-20080904-core-redirect-spam.html
- http://marc.info/?l=oss-security&m=122115344915232&w=2
- http://marc.info/?l=oss-security&m=122118210029084&w=2
- http://marc.info/?l=oss-security&m=122152798516853&w=2
- http://securityreason.com/securityalert/4275
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45071
- http://developer.joomla.org/security/news/274-20080904-core-redirect-spam.html
- http://marc.info/?l=oss-security&m=122115344915232&w=2
- http://marc.info/?l=oss-security&m=122118210029084&w=2
- http://marc.info/?l=oss-security&m=122152798516853&w=2
- http://securityreason.com/securityalert/4275
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45071
Products affected by CVE-2008-4104
-
cpe:2.3:a:joomla:joomla:1.5
-
cpe:2.3:a:joomla:joomla:1.5.1
-
cpe:2.3:a:joomla:joomla:1.5.2
-
cpe:2.3:a:joomla:joomla:1.5.3
-
cpe:2.3:a:joomla:joomla:1.5.4
-
cpe:2.3:a:joomla:joomla:1.5.5
-
cpe:2.3:a:joomla:joomla:1.5.6