Corezoid Process Engine 安全漏洞

Corezoid Process Engine is an application from Corezoid, Inc. helps companies build, manage, host and run processes in the cloud. A security vulnerability exists in Corezoid Process Engine version 6.6.0, which stems from the presence of an open redirection in the redirecturi parameter in the OAut...

CVE-2024-27592

Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows attackers to redirect to arbitrary websites via appending a crafted link to /login/ in the login page URL...

CVE-2024-27592

Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows attackers to redirect to arbitrary websites via appending a crafted link to /login/ in the login page URL...

CVE-2024-27592

Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows attackers to redirect to arbitrary websites via appending a crafted link to /login/ in the login page URL...

CVE-2024-27592

Open Redirect vulnerability CVE-2024-27592 affects Corezoid Process Engine v6.5.0. Multiple sources (NVD/Red Hat/CNNVD/CVE list) describe attackers being able to redirect users to arbitrary websites by appending a crafted link to the /login/ URL on the login page. The root cause is an open redire...

CVE-2024-27592

Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows attackers to redirect to arbitrary websites via appending a crafted link to /login/ in the login page URL...

CVE-2024-27592

Open Redirect vulnerability in Corezoid Process Engine v6.5.0 allows attackers to redirect to arbitrary websites via appending a crafted link to /login/ in the login page URL...

PT-2024-21959 · Unknown · Corezoid Process Engine

Name of the Vulnerable Software and Affected Versions: Corezoid Process Engine version 6.5.0 Description: The issue allows attackers to redirect users to arbitrary websites by appending a crafted link to the /login/ endpoint in the login page URL. This can be exploited by adding a malicious link ...