CVE-2011-5251

Publication date

2012-12-31 20:00:00

Family

mitre

State

PUBLISHED

Description

Open redirect vulnerability in forum/login.php in vBulletin 4.1.3 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter in a lostpw action.