CVE-2015-1060

Medium

5.8/10

Summary

Open redirect vulnerability in lib/Cake/Controller/Controller.php in AdaptCMS 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the HTTP Referer header.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Jan 16, 2015

CVE-2015-1060

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS