CVE-2008-4104
EPSS 0.01%Joomla! Open Redirect vulnerability
Published: 5/2/2022Modified: 2/9/2024
Description
Multiple open redirect vulnerabilities in Joomla! 1.5 before 1.5.7 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a "passed in" URL.
Affected packages (1)
- Packagist/joomla/framework>= 1.5.0, < 1.5.7
References (8)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2008-4104
- PATCHhttps://github.com/joomla/joomla-framework
- WEBhttp://marc.info/?l=oss-security&m=122115344915232&w=2
- WEBhttp://marc.info/?l=oss-security&m=122118210029084&w=2
- WEBhttp://marc.info/?l=oss-security&m=122152798516853&w=2
- WEBhttp://securityreason.com/securityalert/4275
- WEBhttps://exchange.xforce.ibmcloud.com/vulnerabilities/45071
- WEBhttps://web.archive.org/web/20081219152017/http://developer.joomla.org/security/news/274-20080904-core-redirect-spam.html