CVE-2008-4104 — Link Following in Joomla Framework

CWE-59 — Link Following CWE-601 — Open Redirect4 documents4 sources

Severity

5.8MEDIUMNVD

EPSS

0.0%

top 98.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Joomla Framework Joomla

Timeline

PublishedSep 18

Latest updateMay 2

Description

Multiple open redirect vulnerabilities in Joomla! 1.5 before 1.5.7 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a "passed in" URL.

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages2 packages

▶Packagistjoomla/framework1.5.0 — 1.5.7

▶NVDjoomla/joomla7 versions+6

🔴Vulnerability Details

GHSA

Joomla! Open Redirect vulnerability↗2022-05-02

▶

OSV

Joomla! Open Redirect vulnerability↗2022-05-02

▶

CVEList

CVE-2008-4104: Multiple open redirect vulnerabilities in Joomla! 1↗2008-09-18

▶