CVE-2016-10368
MEDIUM NUCLEIOpsview - Open Redirect
Title source: ruleDescription
Open redirect vulnerability in Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the back parameter to the /login URI.
Nuclei Templates (1)
Opsview Monitor Pro - Open Redirect
MEDIUMby 0x_Akoko
Shodan:
http.title:"opsview"
FOFA:
title="opsview"
Scores
CVSS v3
6.1
EPSS
0.0103
EPSS Percentile
77.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Classification
CWE
CWE-601
Status
published
Affected Products (5)
opsview/opsview
opsview/opsview
opsview/opsview
opsview/opsview
n/a/n/a
Timeline
Published
May 03, 2017
Tracked Since
Feb 18, 2026