CVE-2017-5614

Severity CVSS v4.0:
Pending analysis
Type:
CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
Publication date:
03/03/2017
Last modified:
20/04/2025

Description

Open redirect vulnerability in cgiemail and cgiecho allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the (1) success or (2) failure parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:* 11.54.0.0 (including) 11.54.0.36 (excluding)
cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:* 55.9999.61 (including) 56.0.43 (excluding)
cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:* 57.9999.48 (including) 58.0.43 (excluding)
cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:* 59.9999.58 (including) 60.0.35 (excluding)