cbcvebase.
CVE-2008-2878
published 2008-06-26

CVE-2008-2878: Open redirect vulnerability in rss_getfile.php in Academic Web Tools (AWT YEKTA) 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to redirect users to…

PriorityP424medium6.4CVSS 2.0
AVNACLAuNCNIPAP
EXPLOIT
EPSS
2.79%
84.6th percentile
Open redirect vulnerability in rss_getfile.php in Academic Web Tools (AWT YEKTA) 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the file parameter.

Affected

2 ranges
VendorProductVersion rangeFixed in
yektawebacademic_web_tools<= 1.4.2.8
yektawebacademic_web_tools<= 1.4.3.1
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.