CVE-2014-10030

NONE EPSS 73.4%
Published Jan 13, 201511y ago · Modified Jun 17, 20262w ago
Find Similar
Published Jan 13, 2015 11y ago
Last Modified Jun 17, 2026 2w ago

Description

Open redirect vulnerability in forums/login.php in FluxBB before 1.4.13 and 1.5.x before 1.5.7 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect_url parameter.

Threat Intelligence

EPSS Exploit Probability
73.4% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Affected Products 8

VendorProductVersionRange
fluxbbfluxbb* ≤1.4.11
fluxbbfluxbb1.5.0any
fluxbbfluxbb1.5.1any
fluxbbfluxbb1.5.2any
fluxbbfluxbb1.5.3any
fluxbbfluxbb1.5.4any
fluxbbfluxbb1.5.5any
fluxbbfluxbb1.5.6any

References 2

  • fluxbb.org http://fluxbb.org/forums/viewtopic.php?id=8001
    Vendor Advisory
  • fluxbb.org https://fluxbb.org/development/core/tickets/961/
    Exploit

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.