Open redirect vulnerability in phpgwapi/ntlm/index.php in EGroupware Enterprise Line (EPL) prior to 11.1.20110804-1 and EGroupware Community Edition prior to 1.8.001.20110805 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the forward parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
egroupware egroupware |
||
egroupware egroupware enterprise line |