9 lines
No EOL
490 B
Text
9 lines
No EOL
490 B
Text
source: https://www.securityfocus.com/bid/60290/info
|
|
|
|
Telaen is prone to an open-redirection vulnerability.
|
|
|
|
An attacker can leverage this issue by constructing a crafted URI and enticing a user to follow it. When an unsuspecting victim follows the link, they may be redirected to an attacker-controlled site; this may aid in phishing attacks. Other attacks are possible.
|
|
|
|
Versions prior to Telaen 1.3.1 are vulnerable.
|
|
|
|
http://www.example.com/telaen/redir.php?http://www.malicious-site.com |