Lucene search
China National Vulnerability DatabaseCNVD-2022-87349HistoryOct 12, 2022 - 12:00 a.m.
Patrik Dufresne Rdiffweb user redirection vulnerability
2022-10-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
patrik dufresne
rdiffweb
web application
user redirection vulnerability
usa
malicious links
hyperlink injection
email invitations
EPSS
0.001
Percentile
30.0%
Patrik Dufresne Rdiffweb is a web application from the personal developer Patrik Dufresne, USA. Patrik Dufresne Rdiffweb is vulnerable to a user redirection vulnerability, which stems from the fact that the system does not handle target bounces properly and can be exploited to inject malicious links when sending email invitations, enabling hyperlink injection.
Related
prion
prion
Open redirect
2022-10-10 12:15:00
nvd
nvd
CVE-2022-3438
2022-10-10 12:15:09
veracode
veracode
Cross-Site Scripting (XSS)
2022-10-11 12:12:16
osv
osv
rdiffweb vulnerable to Open Redirect
2022-10-10 19:00:18
CVE-2022-3438
2022-10-10 12:15:09
cvelist
cvelist
CVE-2022-3438 Open Redirect in ikus060/rdiffweb
2022-10-10 00:00:00
huntr
huntr
Hyperlink injection leads to redirect victim to malicious website
2022-09-29 18:15:40
cve
cve
CVE-2022-3438
2022-10-10 12:15:09
github
github
rdiffweb vulnerable to Open Redirect
2022-10-10 19:00:18