exploitDog

GHSA-728x-xw5h-7cc9

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter.

Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter.

Ссылки

EPSS

Процентиль: 48%

0.00253

Низкий

CVE ID

Связанные уязвимости

CVE-2014-8489

nvd

около 11 лет назад

Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter.

EPSS

Процентиль: 48%

0.00253

Низкий

CVE ID