vendor:
WolfCMS
by:
Sureshbabu Narvaneni
4.8
CVSS
MEDIUM
Open Redirection
601
CWE
Product Name: WolfCMS
Affected Version From: 0.8.3.1
Affected Version To: 0.8.3.1
Patch Exists: YES
Related CWE: CVE-2018-8813
CPE: a:wolfcms:wolfcms:0.8.3.1
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: Win7 Enterprise x86/Kali Linux 4.12 i686
2018
WolfCMS 0.8.3.1 Open Redirection Vulnerability
Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS before 0.8.3.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.
Mitigation:
Upgrade to latest release.
