Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:1 a.m.9 views

CVE-2023-45202

Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the feed.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL...

6.1CVSS6.8AI score0.00407EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/05 2:42 a.m.16 views

CVE-2024-54014

Improper authorization in handler for custom URL scheme issue in 'Skylark' App for Android 6.2.13 and earlier and 'Skylark' App for iOS 6.2.13 and earlier allows an attacker to lead the application to access an arbitrary web site via another application installed on the user's device...

3.6CVSS0.0019EPSS
Exploits0References3
CVE
CVE
added 2024/12/05 2:42 a.m.56 views

CVE-2024-54014

CVE-2024-54014 affects the Skylark App for Android (≤ 6.2.13) and iOS (≤ 6.2.13). The issue is an improper authorization in the handler for the app’s Custom URL Scheme, which could cause the app to load an arbitrary web site via another application on the device. According to the sources, the vul...

3.6CVSS6.6AI score0.0019EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/05 2:42 a.m.10 views

CVE-2024-54014

Improper authorization in handler for custom URL scheme issue in 'Skylark' App for Android 6.2.13 and earlier and 'Skylark' App for iOS 6.2.13 and earlier allows an attacker to lead the application to access an arbitrary web site via another application installed on the user's device...

3.6CVSS6.8AI score0.0019EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/11/01 9:53 p.m.15 views

CVE-2023-45201 Online Examination System v1.0 - Multiple Open Redirects

Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the admin.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL...

6.1CVSS6.9AI score0.00391EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/09/11 12:0 a.m.22 views

CVE-2023-41609

An open redirect vulnerability in the sanitizeurl parameter of CouchCMS v2.3 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL...

6.3AI score0.00358EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/12/05 12:0 a.m.27 views

CVE-2022-43479

Open redirect vulnerability in SHIRASAGI v1.14.4 to v1.15.0 allows a remote unauthenticated attacker to redirect users to an arbitrary web site and conduct a phishing attack...

6.4AI score0.00918EPSS
Exploits1References4
Cvelist
Cvelist
added 2017/05/29 6:0 p.m.15 views

CVE-2017-9297

Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to redirect users to arbitrary web sites...

6.3AI score0.00926EPSS
Exploits0References2
Prion
Prion
added 2015/07/03 2:0 a.m.20 views

Design/Logic Flaw

Mail in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to trigger a refresh operation, and consequently cause a visit to an arbitrary web site, via a crafted HTML e-mail message...

4.3CVSS6.2AI score0.01913EPSS
Exploits0References6Affected Software2
Packet Storm
Packet Storm
added 2014/12/01 12:0 a.m.39 views

1830 Photonic Service Switch PSS-32/16/4 Cross Site Scripting

SWISSCOM CSIRT ADVISORY - http://www.swisscom.com/security CVE ID: CVE-2014-3809 Product: 1830 Photonic Service Switch PSS-32/16/4 Vendor: Alcatel-Lucent Subject: Reflected Cross-site Scripting - XSS Effect: Remotely exploitable Author: Stephan Rickauer stephan.rickauer at swisscom.com Date:...

4.1CVSS0.1AI score0.00906EPSS
Exploits2
OpenVAS
OpenVAS
added 2014/11/05 12:0 a.m.43 views

OpenX Multiple Open Redirect Vulnerabilities

OpenX is prone to multiple open redirect vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openx:openx";...

5.8CVSS6.7AI score0.01971EPSS
Exploits2References4
OSV
OSV
added 2009/11/13 3:30 p.m.10 views

CVE-2009-2841

The HTMLMediaElement::loadResource function in html/HTMLMediaElement.cpp in WebCore in WebKit before r49480, as used in Apple Safari before 4.0.4 on Mac OS X, does not perform the expected callbacks for HTML 5 media elements that have external URLs for media resources, which allows remote attacke...

5.9AI score
Exploits0References25
NVD
NVD
added 2007/02/14 11:28 a.m.14 views

CVE-2007-0921

Portal Search allows remote attackers to redirect a URL to an arbitrary web site by placing the URL in the query string to the top-level URI...

9.4CVSS6.6AI score0.01911EPSS
Exploits0References5
Prion
Prion
added 2007/02/14 11:28 a.m.15 views

Design/Logic Flaw

Portal Search allows remote attackers to redirect a URL to an arbitrary web site by placing the URL in the query string to the top-level URI...

9.4CVSS7.1AI score0.01911EPSS
Exploits0References5
CVE
CVE
added 2006/12/15 7:0 p.m.42 views

CVE-2003-1311

Technical details about CVE-2003-1311 are not publicly available in the provided connected documents. No concrete affected products, versions, root cause specifics, or remediation are present. Monitor for updates to obtain authoritative information.

6.8CVSS6.9AI score0.0136EPSS
Exploits1References2
Rows per page
Query Builder