exploitDog

GHSA-r46c-v3m9-666j

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

An open redirect issue was discovered in OPNsense through 20.1.5. The redirect parameter "url" in login page was not filtered and can redirect user to any website.

An open redirect issue was discovered in OPNsense through 20.1.5. The redirect parameter "url" in login page was not filtered and can redirect user to any website.

Ссылки

EPSS

Процентиль: 92%

0.07905

Низкий

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2020-23015

CVSS3: 6.1

nvd

почти 5 лет назад

An open redirect issue was discovered in OPNsense through 20.1.5. The redirect parameter "url" in login page was not filtered and can redirect user to any website.

EPSS

Процентиль: 92%

0.07905

Низкий

CVE ID

Дефекты

CWE-601