CVE-2015-3898

MEDIUM

Bonita BPM Portal <6.5.3 - Open Redirect

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-3898. PoCs published by High-Tech Bridge SA.

AI-analyzed exploit summary The advisory details two vulnerabilities in Bonita BPM Portal: a path traversal (CVE-2015-3897) allowing arbitrary file disclosure and an open redirect (CVE-2015-3898) enabling redirection to arbitrary websites. Proof-of-concept URLs are provided for both vulnerabilities.

Description

Multiple open redirect vulnerabilities in Bonita BPM Portal before 6.5.3 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the redirectUrl parameter to (1) bonita/login.jsp or (2) bonita/loginservice.

Exploits (1)

exploitdb WRITEUP VERIFIED
by High-Tech Bridge SA · textwebappsjsp
https://www.exploit-db.com/exploits/37260

The advisory details two vulnerabilities in Bonita BPM Portal: a path traversal (CVE-2015-3897) allowing arbitrary file disclosure and an open redirect (CVE-2015-3898) enabling redirection to arbitrary websites. Proof-of-concept URLs are provided for both vulnerabilities.

Classification
Writeup 100%
Attack Type
Info Leak | Other
Complexity
Trivial
Reliability
Reliable
Target: Bonita BPM 6.5.1 and prior
No auth needed
Prerequisites: Network access to the target system · Bonita BPM Portal running on default port 8080
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/535733/100/0/threaded
Exploit, Third Party Advisory x_refsource_misc
https://www.htbridge.com/advisory/HTB23259

Scores

CVSS v3 6.1
EPSS 0.0607
EPSS Percentile 92.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-601
Status published
Products (1)
bonitasoft/bonita_bpm_portal < 6.5.3
Published Feb 28, 2018
Tracked Since Feb 18, 2026