Vulnerability Description
Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.
CVSS Score
4.8
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wolfcms | Wolf Cms | 0.8.3.1 |
Related Weaknesses (CWE)
References
- https://docs.google.com/document/d/1rdl1yWDJkPuuOFb2sF07_c3twl5uMkH9a-OO2OmYMus/ExploitThird Party Advisory
- https://github.com/wolfcms/wolfcms/issues/670ExploitThird Party Advisory
- https://www.exploit-db.com/exploits/44421/Third Party AdvisoryVDB Entry
- https://docs.google.com/document/d/1rdl1yWDJkPuuOFb2sF07_c3twl5uMkH9a-OO2OmYMus/ExploitThird Party Advisory
- https://github.com/wolfcms/wolfcms/issues/670ExploitThird Party Advisory
- https://www.exploit-db.com/exploits/44421/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2018-8813?
CVE-2018-8813 is a vulnerability with a CVSS score of 4.8 (MEDIUM). Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a ...
How severe is CVE-2018-8813?
CVE-2018-8813 has been rated MEDIUM with a CVSS base score of 4.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-8813?
Check the references section above for vendor advisories and patch information. Affected products include: Wolfcms Wolf Cms.