vTiger CRM 7.4.0 Open Redirection

vTiger CRM 7.4.0 Open Redirection
2024-8-29 22:34:34 Author: packetstormsecurity.com(查看原文) 阅读量:7 收藏

[CVE:ID]CVE-2024-44776
------------------------------------------
[Suggested description]
An Open Redirect vulnerability in the page parameter of vTiger CRM v7.4.0 allows attackers to redirect users to a malicious site via a crafted URL.
------------------------------------------
[VulnerabilityType Other]:Open Redirect
------------------------------------------
[Vendor of Product]:vTiger
------------------------------------------
[Affected Product Code Base]
vTiger CRM - 7.4.0.
------------------------------------------
[Affected Component]:Index of vTiger CRM
------------------------------------------
[Attack Type]:Remote
------------------------------------------
[Impact Information Disclosure]:true
------------------------------------------
[CVE Impact Other]:Redirect a victim to a malicious site
------------------------------------------
[Attack Vectors]:Crafted URL
-----------------------------------------
[Has vendor confirmed or acknowledged the vulnerability?]:true
------------------------------------------
[Discoverer]:Marco Nappi
------------------------------------------
[Reference]:http://vtiger.com
------------------------------------------

文章来源: https://packetstormsecurity.com/files/180461/vtigercrm740-redirect.txt
如有侵权请联系:admin#unsafe.sh