CVE-2011-5079: Input Validation
First published: Tue Feb 14 2012(Updated: )
Open redirect vulnerability in the Modern FAQ (irfaq) extension 1.1.2 and other versions before 1.1.4 for TYPO3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL, probably in the "return url parameter."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| netcreators irfaq | <=1.1.2 | |
| netcreators irfaq | =1.0.1 | |
| netcreators irfaq | =1.0.2 | |
| netcreators irfaq | =1.1.0 | |
| netcreators irfaq | =1.1.1 | |
| TYPO3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- agent/remedy
- agent/type
- agent/weakness
- agent/author
- agent/references
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/netcreators
- canonical/netcreators irfaq
- version/netcreators irfaq/1.1.2
- version/netcreators irfaq/1.0.1
- version/netcreators irfaq/1.0.2
- version/netcreators irfaq/1.1.0
- version/netcreators irfaq/1.1.1
- vendor/typo3
- canonical/typo3 typo3