CVE-2021-39501

Medium

EyouCMS 1.5.4 is vulnerable to Open Redirect. An attacker can redirect a user to a malicious url via the Logout function.

mitre·CWE-601·Published 2021-09-07

CVSS

6.1

EPSS

0.03

KEV

Exploits

cve.orgen

121 chars

EyouCMS 1.5.4 is vulnerable to Open Redirect. An attacker can redirect a user to a malicious url via the Logout function.

NVDen

121 chars

EyouCMS 1.5.4 is vulnerable to Open Redirect. An attacker can redirect a user to a malicious url via the Logout function.

EyouCMS versión 1.5.4, es vulnerable a una Redirección Abierta. Un atacante puede redirigir a un usuario a una url maliciosa por medio de la función Logout

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:P/I:P/A:N
3.1	Primary	NVD	6.1	2.8	2.7	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N