Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM WebSphere Application Server ibm_security servlet重定向网站钓鱼漏洞
Vulnerability Description
IBM WebSphere Application Server是一个完善的、开放的Web应用服务器,它是IBM电子商务应用架构的核心。 IBM WebSphere Application Server (WAS) 5.1.1.19和之前的5.x版本,6.0.2.33之前的6.0.x版本以及6.1.0.23之前的6.1.x版本中的ibm_security注销servlet存在开放重定向漏洞。远程攻击者可以借助logoutExitPage特性,重定向用户到任意网站和执行钓鱼攻击。
CVSS Information
N/A
Vulnerability Type
N/A