Sitecore CMS 'url' Parameter URI Redirection Vulnerability

Bugtraq ID: 48930
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Jul 28 2011 12:00AM
Updated: Jul 28 2011 12:00AM
Credit: Tom Neaves
Vulnerable: Sitecore Sitecore CMS 5.4 rev 091111
Sitecore Sitecore CMS 5.4 rev 080625
Sitecore Sitecore CMS 6.4.1 rev. 110324
Sitecore Sitecore CMS 6.0.2 rev. 090507
Sitecore Sitecore CMS 6.0.0 rev. 090120
Sitecore Sitecore CMS 5.3.2 rev. 090212
Sitecore Sitecore CMS 5.3.2 rev. 081002
Sitecore Sitecore CMS 5.3.1 rev. 071114
Not Vulnerable: Sitecore Sitecore CMS 6.4.1 rev.110720


 

Privacy Statement
Copyright 2010, SecurityFocus