Description

Open redirect vulnerability in the Login Page (index.php) in ownCloud before 5.0.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_url parameter.

Remediation

References

CVE-2013-2044

Related Vulnerabilities

Sqlite NULL Pointer Dereference Vulnerability (CVE-2020-13435)

WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (5.2.4)

WordPress Plugin ShareThis Dashboard for Google Analytics Cross-Site Scripting (2.5.1)

WordPress Plugin Compact WP Audio Player Cross-Site Scripting (1.9.7)

XWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-36477)

Severity

Medium

Classification

CVE-2013-2044 CWE-20

Tags

Missing Update Known Vulnerabilities