Miggo Logo
Miggo Vulnerability Database
GHSA-v8hp-239v-9367

GHSA-v8hp-239v-9367: OroCRM Forced Redirect to External Website

6.1

CVSS Score
3.1

Basic Information

CVE ID
-
GHSA ID
GHSA-v8hp-239v-9367
EPSS Score
-
CWE
CWE-601
Published
5/20/2024
Updated
5/20/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
oro/crmcomposer>= 1.7.0, < 1.7.41.7.4

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

Oro*RM is pron* to op*n r**ir**tion w*i** *oul* *llow *tt**k*rs to r**ir**t us*rs to *xt*rn*l w**sit*.

Reasoning

No *n*lysis *v*il**l*