CVE-2010-0715
First published: Fri Feb 26 2010(Updated: )
Open redirect vulnerability in login.jsp in IBM WebSphere Portal, IBM Lotus Web Content Management (WCM), and IBM Lotus Workplace Web Content Management 5.1.0.0 through 5.1.0.5, 6.0.0.0 through 6.0.0.4, 6.0.1.0 through 6.0.1.7, 6.1.0.0 through 6.1.0.3, and 6.1.5.0; and IBM Lotus Quickr services 8.0, 8.0.0.2, 8.1, 8.1.1, and 8.1.1.1 for WebSphere Portal; allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the query string.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM WebSphere Portal | =5.1.0.0 | |
| IBM WebSphere Portal | =5.1.0.1 | |
| IBM WebSphere Portal | =5.1.0.2 | |
| IBM WebSphere Portal | =5.1.0.3 | |
| IBM WebSphere Portal | =5.1.0.4 | |
| IBM WebSphere Portal | =5.1.0.5 | |
| IBM WebSphere Portal | =6.0.0.0 | |
| IBM WebSphere Portal | =6.0.0.1 | |
| IBM WebSphere Portal | =6.0.0.2 | |
| IBM WebSphere Portal | =6.0.0.3 | |
| IBM WebSphere Portal | =6.0.0.4 | |
| IBM WebSphere Portal | =6.0.1.0 | |
| IBM WebSphere Portal | =6.0.1.1 | |
| IBM WebSphere Portal | =6.0.1.2 | |
| IBM WebSphere Portal | =6.0.1.3 | |
| IBM WebSphere Portal | =6.0.1.4 | |
| IBM WebSphere Portal | =6.0.1.5 | |
| IBM WebSphere Portal | =6.0.1.6 | |
| IBM WebSphere Portal | =6.0.1.7 | |
| IBM WebSphere Portal | =6.1.0.0 | |
| IBM WebSphere Portal | =6.1.0.1 | |
| IBM WebSphere Portal | =6.1.0.2 | |
| IBM WebSphere Portal | =6.1.0.3 | |
| IBM WebSphere Portal | =6.1.5.0 | |
| IBM Workplace Web Content Management | =5.1.0.0 | |
| IBM Workplace Web Content Management | =5.1.0.1 | |
| IBM Workplace Web Content Management | =5.1.0.2 | |
| IBM Workplace Web Content Management | =5.1.0.3 | |
| IBM Workplace Web Content Management | =5.1.0.4 | |
| IBM Workplace Web Content Management | =5.1.0.5 | |
| IBM Workplace Web Content Management | =6.0.0.0 | |
| IBM Workplace Web Content Management | =6.0.0.1 | |
| IBM Workplace Web Content Management | =6.0.0.2 | |
| IBM Workplace Web Content Management | =6.0.0.3 | |
| IBM Workplace Web Content Management | =6.0.0.4 | |
| IBM Workplace Web Content Management | =6.0.1.0 | |
| IBM Workplace Web Content Management | =6.0.1.1 | |
| IBM Workplace Web Content Management | =6.0.1.2 | |
| IBM Workplace Web Content Management | =6.0.1.3 | |
| IBM Workplace Web Content Management | =6.0.1.4 | |
| IBM Workplace Web Content Management | =6.0.1.5 | |
| IBM Workplace Web Content Management | =6.0.1.6 | |
| IBM Workplace Web Content Management | =6.0.1.7 | |
| IBM Workplace Web Content Management | =6.1.0.0 | |
| IBM Workplace Web Content Management | =6.1.0.1 | |
| IBM Workplace Web Content Management | =6.1.0.2 | |
| IBM Workplace Web Content Management | =6.1.0.3 | |
| IBM Workplace Web Content Management | =6.1.5.0 | |
| IBM Workplace Web Content Management | =5.1.0.0 | |
| IBM Workplace Web Content Management | =5.1.0.1 | |
| IBM Workplace Web Content Management | =5.1.0.2 | |
| IBM Workplace Web Content Management | =5.1.0.3 | |
| IBM Workplace Web Content Management | =5.1.0.4 | |
| IBM Workplace Web Content Management | =5.1.0.5 | |
| IBM Workplace Web Content Management | =6.0.0.0 | |
| IBM Workplace Web Content Management | =6.0.0.1 | |
| IBM Workplace Web Content Management | =6.0.0.2 | |
| IBM Workplace Web Content Management | =6.0.0.3 | |
| IBM Workplace Web Content Management | =6.0.0.4 | |
| IBM Workplace Web Content Management | =6.0.1.0 | |
| IBM Workplace Web Content Management | =6.0.1.1 | |
| IBM Workplace Web Content Management | =6.0.1.2 | |
| IBM Workplace Web Content Management | =6.0.1.3 | |
| IBM Workplace Web Content Management | =6.0.1.4 | |
| IBM Workplace Web Content Management | =6.0.1.5 | |
| IBM Workplace Web Content Management | =6.0.1.6 | |
| IBM Workplace Web Content Management | =6.0.1.7 | |
| IBM Workplace Web Content Management | =6.1.0.0 | |
| IBM Workplace Web Content Management | =6.1.0.1 | |
| IBM Workplace Web Content Management | =6.1.0.2 | |
| IBM Workplace Web Content Management | =6.1.0.3 | |
| IBM Workplace Web Content Management | =6.1.5.0 | |
| IBM Lotus Quickr Server | =8.0 | |
| IBM Lotus Quickr Server | =8.0.0.2 | |
| IBM Lotus Quickr Server | =8.1 | |
| IBM Lotus Quickr Server | =8.1.1 | |
| IBM Lotus Quickr Server | =8.1.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2010-0715?
CVE-2010-0715 has been classified with a medium severity rating due to the potential for exploitation via open redirects.
How do I fix CVE-2010-0715?
To fix CVE-2010-0715, apply the latest patches and updates provided by IBM for affected software versions.
What types of products are affected by CVE-2010-0715?
CVE-2010-0715 affects IBM WebSphere Portal, IBM Lotus Web Content Management, and IBM Lotus Quickr services.
What is the impact of CVE-2010-0715?
The impact of CVE-2010-0715 can lead to unauthorized redirection of users to malicious websites.
When was CVE-2010-0715 disclosed?
CVE-2010-0715 was disclosed in February 2010.
- agent/references
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/remedy
- agent/author
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/ibm
- canonical/ibm websphere portal
- version/ibm websphere portal/5.1.0.0
- version/ibm websphere portal/5.1.0.1
- version/ibm websphere portal/5.1.0.2
- version/ibm websphere portal/5.1.0.3
- version/ibm websphere portal/5.1.0.4
- version/ibm websphere portal/5.1.0.5
- version/ibm websphere portal/6.0.0.0
- version/ibm websphere portal/6.0.0.1
- version/ibm websphere portal/6.0.0.2
- version/ibm websphere portal/6.0.0.3
- version/ibm websphere portal/6.0.0.4
- version/ibm websphere portal/6.0.1.0
- version/ibm websphere portal/6.0.1.1
- version/ibm websphere portal/6.0.1.2
- version/ibm websphere portal/6.0.1.3
- version/ibm websphere portal/6.0.1.4
- version/ibm websphere portal/6.0.1.5
- version/ibm websphere portal/6.0.1.6
- version/ibm websphere portal/6.0.1.7
- version/ibm websphere portal/6.1.0.0
- version/ibm websphere portal/6.1.0.1
- version/ibm websphere portal/6.1.0.2
- version/ibm websphere portal/6.1.0.3
- version/ibm websphere portal/6.1.5.0
- canonical/ibm workplace web content management
- version/ibm workplace web content management/5.1.0.0
- version/ibm workplace web content management/5.1.0.1
- version/ibm workplace web content management/5.1.0.2
- version/ibm workplace web content management/5.1.0.3
- version/ibm workplace web content management/5.1.0.4
- version/ibm workplace web content management/5.1.0.5
- version/ibm workplace web content management/6.0.0.0
- version/ibm workplace web content management/6.0.0.1
- version/ibm workplace web content management/6.0.0.2
- version/ibm workplace web content management/6.0.0.3
- version/ibm workplace web content management/6.0.0.4
- version/ibm workplace web content management/6.0.1.0
- version/ibm workplace web content management/6.0.1.1
- version/ibm workplace web content management/6.0.1.2
- version/ibm workplace web content management/6.0.1.3
- version/ibm workplace web content management/6.0.1.4
- version/ibm workplace web content management/6.0.1.5
- version/ibm workplace web content management/6.0.1.6
- version/ibm workplace web content management/6.0.1.7
- version/ibm workplace web content management/6.1.0.0
- version/ibm workplace web content management/6.1.0.1
- version/ibm workplace web content management/6.1.0.2
- version/ibm workplace web content management/6.1.0.3
- version/ibm workplace web content management/6.1.5.0
- canonical/ibm lotus quickr server
- version/ibm lotus quickr server/8.0
- version/ibm lotus quickr server/8.0.0.2
- version/ibm lotus quickr server/8.1
- version/ibm lotus quickr server/8.1.1
- version/ibm lotus quickr server/8.1.1.1