cbcvebase.
CVE-2015-1578
published 2015-02-11

CVE-2015-1578: Multiple open redirect vulnerabilities in u5CMS before 3.9.4 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a…

PriorityP430medium5.8CVSS 2.0
AVNACMAuNCPIPAN
EXPLOIT
EPSS
6.24%
92.7th percentile
Multiple open redirect vulnerabilities in u5CMS before 3.9.4 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) pidvesa cookie to u5admin/pidvesa.php or (2) uri parameter to u5admin/meta2.php.

Affected

1 ranges
VendorProductVersion rangeFixed in
yubau5cms<= 3.9.3
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.