PT-2017-6808 · Ellucian · Ellucian Banner Student
Publicado
2017-09-11
·
Atualizado
2018-10-09
·
CVE-2015-5054
CVSS v2.0
5.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Ellucian Banner Student versions 8.5.1.2 through 8.7
Description
The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in an unspecified parameter. This could potentially lead to phishing attacks.
Recommendations
For versions 8.5.1.2 through 8.7, update to a version that contains a fix for this issue to prevent remote attackers from redirecting users to arbitrary web sites.
Correção
Open Redirect
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ellucian Banner Student