CVE-2011-5252

Description

Open redirect vulnerability in Users/Account/LogOff in Orchard 1.0.x before 1.0.21, 1.1.x before 1.1.31, 1.2.x before 1.2.42, and 1.3.x before 1.3.10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the ReturnUrl parameter.

CVSS Version 2.0

nvd

CVE ID: CVE-2011-5252
Base Score: 5.8
Base Severity: MEDIUM
Vector String:AV:N/AC:M/Au:N/C:P/I:P/A:N

Proof Of Concept

Nuclei Templates for CVE-2011-5252

Refrence: Project Discovery GitHub

Refrence: NVD