NVD

Id
2772  
Name
CVE-2008-2878  
Description
Open redirect vulnerability in rss_getfile.php in Academic Web Tools (AWT YEKTA) 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the file parameter.  
Reject
 
CVSS Version
2  
CVSS Score
6.4  
Severity
Medium  
CVSS Base Score
6.4  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:P/A:P)  
Pub Date
2017-01-03  
Published
2008-06-26  
Modified Date
2009-01-29  
Seq
2008-2878  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
17594 2772 CVE-2008-2878 3959  View
17595 2772 CVE-2008-2878 http://www.bugreport.ir/?/44  View
17596 2772 CVE-2008-2878 20080619 Academic Web Tools CMS <= 1.4.2.8 Multiple Vulnerabilities  View
17597 2772 CVE-2008-2878 29813  View
17598 2772 CVE-2008-2878 academicwebtools-multiple-xss(43178)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
50620 JVNDB-2008-005930 AWT YEKTA の rss_getfile.php におけるオープンリダイレクトの脆弱性 Academic Web Tools (AWT YEKTA) の rss_getfile.php には、オープンリダイレクトの脆弱性が存在します。 CVE-2008-2878 32991 CVE-2008-2878 2772 6.4 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-005930.html 2008-06-26 2012-12-20 View