e107 0.6174 allows remote attackers to redirect users to other web sites via the download parameter in rate.php, which is used after a user submits a file download rating. NOTE: in the default installation, the e_BASE variable restricts the redirection to the same web site.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-12-07T11:00:00

Updated: 2024-08-07T23:31:48.986Z

Reserved: 2005-12-07T00:00:00

Link: CVE-2005-4052

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2005-12-07T11:03:00.000

Modified: 2024-11-21T00:03:23.923

Link: CVE-2005-4052

cve-icon Redhat

No data.