Описание
AVideo versions prior to 20.1 contain an open redirect vulnerability caused by insufficient validation of the siteRedirectUri parameter during user registration. Attackers can redirect users to external sites, facilitating phishing attacks.
Уязвимые конфигурации
Конфигурация 1Версия до 20.0 (исключая)
cpe:2.3:a:wwbn:avideo:*:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00033
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-601
Связанные уязвимости
CVSS3: 6.1
github
около 2 месяцев назад
AVideo versions prior to 20.0 contain an open redirect vulnerability caused by insufficient validation of the siteRedirectUri parameter during user registration. Attackers can redirect users to external sites, facilitating phishing attacks.
EPSS
Процентиль: 9%
0.00033
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-601