CVE-2022-32444

MEDIUM NUCLEI

Yuba U5cms - Open Redirect

Title source: rule

Description

An issue was discovered in u5cms verion 8.3.5 There is a URL redirection vulnerability that can cause a user's browser to be redirected to another site via /loginsave.php.

Nuclei Templates (1)

u5cms v8.3.5 - Open Redirect

MEDIUMby 0x_Akoko

References (1)

[Exploit, Issue Tracking, Third Party Advisory] https://github.com/u5cms/u5cms/issues/50

Scores

CVSS v3 6.1

EPSS 0.0376

EPSS Percentile 88.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-601

Status published

Products (1)

yuba/u5cms 8.3.5

Published Jun 17, 2022

Tracked Since Feb 18, 2026