Description
Open redirect vulnerability in htdocs/user.php in XOOPS 2.0.18 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the xoops_redirect parameter.
Remediation
References
Related Vulnerabilities
Apache Tomcat Resource Management Errors Vulnerability (CVE-2014-0230)
WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Security Bypass (9.3.2)
phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-8226)
WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Cross-Site Scripting (3.5.2)
WordPress Plugin Custom Body Class Cross-Site Request Forgery (0.6.0)