CVE-2014-2213

Published: 2019-11-22T19:15Z

Last Modified: 2024-11-21T02:05Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Open redirect vulnerability in the password reset functionality in POSH 3.0 through 3.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter to portal/scr_sendmd5.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt