cbcvebase.
CVE-2015-1060
published 2015-01-16

CVE-2015-1060: Open redirect vulnerability in lib/Cake/Controller/Controller.php in AdaptCMS 3.0.3 allows remote attackers to redirect users to arbitrary web sites and…

PriorityP428medium5.8CVSS 2.0
AVNACMAuNCPIPAN
EXPLOIT
EPSS
4.40%
90.1th percentile
Open redirect vulnerability in lib/Cake/Controller/Controller.php in AdaptCMS 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the HTTP Referer header.

Affected

1 ranges
VendorProductVersion rangeFixed in
insanevisionsadaptcms

CVSS provenance

nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
osv7.6HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.