CVE-2020-23182
MEDIUMphp-fusion 9.03.60 - Open Redirect via Shoutbox Message Panel
Title source: llmDescription
The component /php-fusion/infusions/shoutbox_panel/shoutbox_archive.php in PHP-Fusion 9.03.60 allows attackers to redirect victim users to malicious websites via a crafted payload entered into the Shoutbox message panel.
References (1)
Core 1
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/phpfusion/PHPFusion/issues/2329
Scores
CVSS v3
5.4
EPSS
0.0052
EPSS Percentile
39.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-601
Status
published
Products (1)
php-fusion/php-fusion
9.03.60
Published
Jul 02, 2021
Tracked Since
Feb 18, 2026