4 matches found
GHSA-J7F2-CQVQ-5JCF Apache Sling Auth Core bundle vulnerable to Open Redirection
Open redirect vulnerability in the AbstractAuthenticationFormServlet in the Auth Core org.apache.sling.auth.core bundle before 1.1.4 in Apache Sling allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the resource parameter, related to "a...
CVE-2013-4390
Open redirect vulnerability in the AbstractAuthenticationFormServlet in the Auth Core org.apache.sling.auth.core bundle before 1.1.4 in Apache Sling allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the resource parameter, related to "a...
Open redirect
Open redirect vulnerability in the AbstractAuthenticationFormServlet in the Auth Core org.apache.sling.auth.core bundle before 1.1.4 in Apache Sling allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the resource parameter, related to "a...
CVE-2013-4390
The CVE-2013-4390 vulnerability affects the Apache Sling Auth Core bundle (org.apache.sling.auth.core) in the AbstractAuthenticationFormServlet, with versions prior to 1.1.4. An open redirect exists that lets remote attackers redirect users to arbitrary sites via a resource parameter, enabling ph...