Bonitasoft - Bonita Bpm Portal CVE

Filtered by vendor Bonitasoft Subscribe

Filtered by product Bonita Bpm Portal

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-3898	1 Bonitasoft	1 Bonita Bpm Portal	2019-04-30	5.8 MEDIUM	6.1 MEDIUM
Multiple open redirect vulnerabilities in Bonita BPM Portal before 6.5.3 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the redirectUrl parameter to (1) bonita/login.jsp or (2) bonita/loginservice.

Vulnerabilities (CVE)