CVE-2020-22840

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
5.8
MEDIUM
Affected
1
PROJECT

Description

Open redirect vulnerability in b2evolution CMS version prior to 6.11.6 allows an attacker to perform malicious open redirects to an attacker controlled resource via redirect_to parameter in email_passthrough.php.

b2evolution/b2evolution
b2evolution/b2evolution
b2evolution CMS: Multiblog/CMS content publishing + forums + email marketing + social network + more... b2evolution includes everything you need to run and maintain a modern website. Optimized for low maintenance with easy upgrades and effective antispam. Full RWD & bootstrap support.
GitHubGitHub
182