Back to search
CVE-2005-4052
Published: Dec 7, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
e107 0.6174 allows remote attackers to redirect users to other web sites via the download parameter in rate.php, which is used after a user submits a file download rating. NOTE: in the default installation, the e_BASE variable restricts the redirection to the same web site.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20051205 [scip_Advisory] e107 v0.6 rate.php manipulation
mailing-list
x_refsource_BUGTRAQ
229
third-party-advisory
x_refsource_SREASON
17890
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now