CVE-2019-6009

medium

Description

Open redirect vulnerability in SHIRASAGI v1.7.0 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

References

Advisories
More

https://github.com/shirasagi/shirasagi/commit/6016948ea535e51b16535888af13df064a1a15d3.patch

https://github.com/shirasagi/shirasagi/commit/6016948ea535e51b16535888af13df064a1a15d3

https://github.com/shirasagi/shirasagi

http://jvn.jp/en/jp/JVN74699196/index.html

https://www.ss-proj.org/

Details

Source: Mitre, NVD

Published: 2019-09-12

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 6.1

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N