CVE-2008-4104 – joomla/framework

Package

Manager: composer
Name: joomla/framework
Vulnerable Version: >=1.5.0 <1.5.7

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00025 pctl0.0539

Details

Joomla! Open Redirect vulnerability Multiple open redirect vulnerabilities in Joomla! 1.5 before 1.5.7 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a "passed in" URL.

Metadata

Created: 2022-05-02T00:06:48Z
Modified: 2024-02-09T16:54:17Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-9qr2-fx2g-pfvh/GHSA-9qr2-fx2g-pfvh.json
CWE IDs: ["CWE-601"]
Alternative ID: GHSA-9qr2-fx2g-pfvh
Finding: F156
Auto approve: 1