CVE-2016-10742

Zabbix before 2.2.21rc1, 3.x before 3.0.13rc1, 3.1.x and 3.2.x before 3.2.10rc1, and 3.3.x and 3.4.x before 3.4.4rc1 allows open redirect via the request parameter.

Published : 2019-02-17 16:29 Updated : 2019-03-13 19:27

5.8
CVSS Score More info
Score 5.8 / 10
5.8
Vendor Product Version URI
Zabbix Zabbix 2.2.20 cpe:/a:zabbix:zabbix:2.2.20
Zabbix Zabbix 3.0.0 cpe:/a:zabbix:zabbix:3.0.0
Zabbix Zabbix 3.0.2 cpe:/a:zabbix:zabbix:3.0.2
Debian Debian Linux 8.0 cpe:/o:debian:debian_linux:8.0
  1. Zabbix (1) Search CVE
    1. Zabbix (3) Search CVE
      1. 2.2.20
      2. 3.0.0
      3. 3.0.2
  2. Debian (1) Search CVE
    1. Debian Linux (1) Search CVE
      1. 8.0

CWE

ID Name Description Links
CWE-601 URL Redirection to Untrusted Site ('Open Redirect') A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks. CVE

History of changes

Date Event
2019-03-13 19:27
2019-03-12 10:29
2019-02-22 17:36
2019-02-17 16:29

New CVE