CVE-2005-4052 Information

Description

e107 0.6174 allows remote attackers to redirect users to other web sites via the download parameter in rate.php which is used after a user submits a file download rating. NOTE: in the default installation the e_BASE variable restricts the redirection to the same web site.

Reference

http://secunia.com/advisories/17890/ http://securityreason.com/securityalert/229 http://www.securityfocus.com/archive/1/418577/100/0/threaded