← Retour aux CVEs

CVE-2020-36665

MEDIUM

5.5

Description

A vulnerability was found in Artesãos SEOTools up to 0.17.1 and classified as critical. This issue affects the function eachValue of the file TwitterCards.php. The manipulation of the argument value leads to open redirect. Upgrading to version 0.17.2 is able to address this issue. The identifier of the patch is ca27cd0edf917e0bc805227013859b8b5a1f01fb. It is recommended to upgrade the affected component. The identifier VDB-222233 was assigned to this vulnerability.

Details CVE

Score CVSS v3.15.5

SeveriteMEDIUM

Vecteur CVSSCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vecteur d'attaqueADJACENT_NETWORK

ComplexiteLOW

Privileges requisLOW

Interaction utilisateurNONE

Publie3/4/2023

Derniere modification11/21/2024

Sourcenvd

Observations honeypot0

Produits affectes

seotool_project:seotool

Faiblesses (CWE)

CWE-601CWE-601

References

https://github.com/artesaos/seotools/commit/ca27cd0edf917e0bc805227013859b8b5a1f01fb(cna@vuldb.com)

https://github.com/artesaos/seotools/pull/201(cna@vuldb.com)

https://github.com/artesaos/seotools/releases/tag/v0.17.2(cna@vuldb.com)

https://vuldb.com/?ctiid.222233(cna@vuldb.com)

https://vuldb.com/?id.222233(cna@vuldb.com)

https://github.com/artesaos/seotools/commit/ca27cd0edf917e0bc805227013859b8b5a1f01fb(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/artesaos/seotools/pull/201(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/artesaos/seotools/releases/tag/v0.17.2(af854a3a-2127-422b-91ae-364da2661108)

https://vuldb.com/?ctiid.222233(af854a3a-2127-422b-91ae-364da2661108)

https://vuldb.com/?id.222233(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.