CVE-2009-4788 — MEDIUM (4.3)

Q: How severe is CVE-2009-4788?

CVE-2009-4788 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2009-4788?

Check the references section above for vendor advisories and patch information. Affected products include: Pligg Pligg Cms.

Vulnerability Description

Multiple open redirect vulnerabilities in Pligg 1.0.2 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the (1) return parameter to pligg/login.php and the (2) HTTP Referer header to user_settings.php.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Pligg	Pligg Cms	<= 1.0.2

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2009-4788?

CVE-2009-4788 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Multiple open redirect vulnerabilities in Pligg 1.0.2 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the (1) return parameter to pligg/log...

How severe is CVE-2009-4788?

CVE-2009-4788 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-4788?

Check the references section above for vendor advisories and patch information. Affected products include: Pligg Pligg Cms.