← Voltar para CVEs
CVE-2013-2248
N/ADescricao
Multiple open redirect vulnerabilities in Apache Struts 2.0.0 through 2.3.15 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in a parameter using the (1) redirect: or (2) redirectAction: prefix.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado7/20/2013
Ultima modificacao4/29/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
apache:struts
Fraquezas (CWE)
CWE-20
Referencias
http://struts.apache.org/release/2.3.x/docs/s2-017.html(secalert@redhat.com)
http://www.fujitsu.com/global/support/software/security/products-f/interstage-bpm-analytics-201301e.html(secalert@redhat.com)
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html(secalert@redhat.com)
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html(secalert@redhat.com)
http://www.securityfocus.com/bid/61196(secalert@redhat.com)
http://www.securityfocus.com/bid/64758(secalert@redhat.com)
http://struts.apache.org/release/2.3.x/docs/s2-017.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.fujitsu.com/global/support/software/security/products-f/interstage-bpm-analytics-201301e.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/61196(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/64758(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.