Description

Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_url parameter.

Remediation

References

CVE-2012-2270

Related Vulnerabilities

Oracle Database Server CVE-2008-0347 Vulnerability (CVE-2008-0347)

LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16178)

WordPress Plugin SendinBlue Subscribe Form And WP SMTP Multiple Unspecified Vulnerabilities (2.7.3)

WordPress Plugin WP-Filebase Download Manager Cross-Site Scripting (3.1.02)

WordPress Plugin Quick Paypal Payments Cross-Site Scripting (3.0)

Severity

Medium

Classification

CVE-2012-2270 CWE-20

Tags

Missing Update Known Vulnerabilities