Open redirect vulnerability in the login page in WebsitePanel before 1.2.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in ReturnUrl to Default.aspx.
CPE | Name | Operator | Version |
---|---|---|---|
websitepanel | eq | 1.1.2 | |
websitepanel | eq | 1.2.0 | |
websitepanel | eq | 1.1.0 | |
websitepanel | le | 1.2.1 | |
websitepanel | eq | 1.0.0 | |
websitepanel | eq | 1.0.1 | |
websitepanel | eq | 1.0.2 |