Open Redirect Vulnerability in SHIRASAGI by Mikan
CVE-2019-6009

6.1MEDIUM

Key Information:

Vendor

Shirasagi Project

Status
Shirasagi
Vendor
CVE Published:
12 September 2019

What is CVE-2019-6009?

The open redirect vulnerability found in SHIRASAGI versions up to 1.7.0 allows remote attackers to manipulate URLs, enabling them to redirect users to arbitrary external sites. This flaw can be exploited to conduct phishing attacks, potentially compromising user data and security.

Affected Version(s)

SHIRASAGI v1.7.0 and earlier

References

https://www.ss-proj.org/
x_refsource_MISC
https://github.com/shirasagi/shirasagi
x_refsource_MISC
https://github.com/shirasagi/shirasagi/commit/6016948ea53...
x_refsource_MISC

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.