CVE-2011-0908

Vanilla Forums < 2.0.17.6 - Open Redirect via Target Parameter

Title source: llm
STIX 2.1

Description

Open redirect vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the Target parameter to an unspecified component, a different vulnerability than CVE-2011-0526.

References (1)

Core 1
Core References

Scores

EPSS 0.0096
EPSS Percentile 57.4%

Details

CWE
CWE-20
Status published
Products (14)
vanillaforums/vanilla 2.0.9
vanillaforums/vanilla 2.0.10
vanillaforums/vanilla 2.0.11
vanillaforums/vanilla 2.0.12
vanillaforums/vanilla 2.0.13
vanillaforums/vanilla 2.0.14
vanillaforums/vanilla 2.0.15
vanillaforums/vanilla 2.0.16
vanillaforums/vanilla 2.0.17
vanillaforums/vanilla 2.0.17.1
... and 4 more
Published Feb 08, 2011
Tracked Since Feb 18, 2026