Open Redirect Vulnerability in Jensen of Scandinavia AS Air:Link Devices

Open Redirect Vulnerability in Jensen of Scandinavia AS Air:Link Devices

CVE-2016-10315 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC) version 1.13, and Air:Link 59300 (AL59300) version 1.04 (Rev. 4) devices allow remote attackers to conduct Open Redirect attacks via the submit-url parameter to certain /goform/* pages.

Learn more about our Web Application Penetration Testing UK.