CVE-2014-4760
Open redirect vulnerability in IBM WebSphere Portal 6.1.0.0 through 6.1.0.6 CF27, 6.1.5.0 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF28, 8.0.0 before 8.0.0.1 CF13, and 8.5.0 before CF01 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0033 (0.3%)
Percentile: 55.7%
EPSS: 2026-05-06
Affects
ibm:websphere_portalTechnical description
Open redirect vulnerability in IBM WebSphere Portal 6.1.0.0 through 6.1.0.6 CF27, 6.1.5.0 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF28, 8.0.0 before 8.0.0.1 CF13, and 8.5.0 before CF01 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
Published: 8/12/2014, 5:01:04 AM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://secunia.com/advisories/60597
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI19877
- http://www-01.ibm.com/support/docview.wss?uid=swg21680230
- http://www.securitytracker.com/id/1030669
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94657
- http://secunia.com/advisories/60597
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI19877
- http://www-01.ibm.com/support/docview.wss?uid=swg21680230