CVE-2013-2621
published 2020-02-03CVE-2013-2621: Open Redirection Vulnerability in the redir.php script in Telaen before 1.3.1 allows remote attackers to redirect victims to arbitrary websites via a crafted…
PriorityP344medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
10.69%
95.2th percentile
Open Redirection Vulnerability in the redir.php script in Telaen before 1.3.1 allows remote attackers to redirect victims to arbitrary websites via a crafted URL.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| telaen_project | telaen | < 1.3.1 | 1.3.1 |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Telaen 2.7.x - Open Redirection
exploitdb·2013-06-04
CVE-2013-2621 Telaen 2.7.x - Open Redirection
Telaen 2.7.x - Open Redirection
---
source: https://www.securityfocus.com/bid/60290/info
Telaen is prone to an open-redirection vulnerability.
An attacker can leverage this issue by constructing a crafted URI and enticing a user to follow it. When an unsuspecting victim follows the link, they may be redirected to an attacker-controlled site; this may aid in phishing attacks. Other attacks are possible.
Versions prior to Telaen 1.3.1 are vulnerable.
http://www.example.com/telaen/redir.php?http://www.malicious-site.com
Nuclei
Telaen => v1.3.1 - Open Redirect
nuclei·CVSS 6.1
CVE-2013-2621 [MEDIUM] Telaen => v1.3.1 - Open Redirect
Telaen => v1.3.1 - Open Redirect
Open Redirection Vulnerability in the redir.php script in Telaen before 1.3.1 allows remote attackers to redirect victims to arbitrary websites via a crafted URL.
Template:
id: CVE-2013-2621
info:
name: Telaen => v1.3.1 - Open Redirect
author: ctflearner
severity: medium
description: |
Open Redirection Vulnerability in the redir.php script in Telaen before 1.3.1 allows remote attackers to redirect victims to arbitrary websites via a crafted URL.
impact: |
An attacker can exploit this vulnerability to redirect users to malicious websites, leading to phishing attacks or the installation of malware.
remediation: |
Upgrade to the latest version of Telaen to fix the open redirect vulnerability.
reference:
- https://www.exploit-db.com/exploits/38546
- https:/
2020-02-03
Published