CVE-2008-4284

EPSS 0.36% · P59 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-4284

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

IBM WebSphere Application Server ibm_security servlet重定向网站钓鱼漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IBM WebSphere Application Server是一个完善的、开放的Web应用服务器，它是IBM电子商务应用架构的核心。 IBM WebSphere Application Server (WAS) 5.1.1.19和之前的5.x版本，6.0.2.33之前的6.0.x版本以及6.1.0.23之前的6.1.x版本中的ibm_security注销servlet存在开放重定向漏洞。远程攻击者可以借助logoutExitPage特性，重定向用户到任意网站和执行钓鱼攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-4284

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-4284

请登录查看更多情报信息。

http://www-1.ibm.com/support/docview.wss?uid=swg21320242x_refsource_CONFIRM
http://www.securityfocus.com/bid/33700vdb-entryx_refsource_BID
http://www-1.ibm.com/support/docview.wss?uid=swg24021527vendor-advisoryx_refsource_AIXAPAR
https://exchange.xforce.ibmcloud.com/vulnerabilities/47200vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2008-4284

Same Patch Batch · n/a · 2009-02-10 · 40 CVEs total

CVE-2009-0502		Moodle Snoopy 跨站脚本漏洞
CVE-2008-6099		rportal 'index.php'未明漏洞
CVE-2008-6100		Berlios Discussion Forums多个SQL注入漏洞
CVE-2008-6101		Ezonescripts Adult Banner Exchange Website 'click.php' SQL注入漏洞
CVE-2008-6102		ezonescripts Link Trader Script 'ratelink.php'SQL注入漏洞
CVE-2008-6103		a4desk_flash_event_calendar 'index.php'代码注入漏洞
CVE-2008-6104		A4Desk Event Calendar 'eventid' Parameter SQL注入漏洞
CVE-2009-0499		Moodle 跨站请求伪造漏洞
CVE-2009-0500		Moodle Log Table 跨站脚本漏洞
CVE-2009-0501		Moodle Calendar Export 信息泄露漏洞
CVE-2008-6108		Gwm Galatolo_webmanager 'result.php'跨站脚本攻击漏洞
CVE-2009-0490		Audacity 缓冲区错误漏洞
CVE-2009-0491		Elecard MPEG Player M3U文件处理栈溢出漏洞
CVE-2009-0492		SimpleIrcBot Authentication 未明安全绕过漏洞
CVE-2009-0493		IT!CMS 'login.php' SQL注入漏洞
CVE-2009-0494		Joomla! Portfol 'vcatid' SQL注入漏洞
CVE-2009-0495		REALTOR 747 'include/define.php'远程文件包含漏洞
CVE-2009-0496		Ignite_Realtime Openfire 'logviewer.jsp'跨站脚本攻击漏洞
CVE-2009-0497		Ignite_Realtime Openfire 'log.jsp'目录遍历漏洞
CVE-2009-0498		Minitdesign Virtual GuestBook guestbook.mdb权限许可和访问控制漏洞

Showing top 20 of 40 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-4284

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-4284

I. Basic Information for CVE-2008-4284

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-4284

III. Intelligence Information for CVE-2008-4284

Same Patch Batch · n/a · 2009-02-10 · 40 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-4284

Leave a comment