Lucene search
K

160 matches found

NVD
NVD
added 2023/08/16 9:15 a.m.19 views

CVE-2023-39507

Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website...

6.1CVSS6.2AI score0.00323EPSS
Exploits0References1
Prion
Prion
added 2023/08/16 9:15 a.m.15 views

Authorization

Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website...

5.8CVSS6.2AI score0.00323EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/16 8:47 a.m.52 views

CVE-2023-39507

The CVE-2023-39507 entry concerns the Android app “Rikunabi NEXT” by Recruit. The vulnerability is in the app’s Custom URL Scheme handler, enabling improper authorization that can cause the app to navigate a user to an arbitrary website. Affected versions are Android prior to ver. 11.5.0. The roo...

6.1CVSS6.2AI score0.00323EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/16 8:47 a.m.11 views

CVE-2023-39507

Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website...

7.1AI score0.00323EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/16 8:47 a.m.12 views

CVE-2023-39507

Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website...

6.4AI score0.00323EPSS
Exploits0References1
NVD
NVD
added 2023/08/09 7:15 p.m.23 views

CVE-2023-38998

An open redirect in the Login page of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL...

6.1CVSS6.2AI score0.0051EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/08/09 12:0 a.m.14 views

CVE-2023-38998

An open redirect in the Login page of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL...

6.7AI score0.0051EPSS
Exploits1References2
OSV
OSV
added 2023/08/09 12:0 a.m.14 views

CVE-2023-38998

An open redirect in the Login page of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL...

6.1CVSS6.8AI score0.0051EPSS
Exploits1References4
Prion
Prion
added 2023/05/09 5:15 p.m.13 views

Open redirect

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.0 and 10.9.1 that may allow a remote, unauthenticated attacker to craft a URL that could redirect a victim to an arbitrary website, simplifying phishing attacks...

5.8CVSS6.3AI score0.00488EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/05/03 10:15 p.m.14 views

Open redirect

A URL redirection to untrusted site 'Open Redirect' vulnerability CWE-601 in FortiNAC-F version 7.2.0, FortiNAC version 9.4.1 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an unauthenticated attacker to redirect users to any arbitrary website via a...

4.3CVSS4.9AI score0.00422EPSS
Exploits0References1Affected Software2
Fortinet
Fortinet
added 2023/05/03 12:0 a.m.33 views

FortiNAC - open redirect in defaultUrl parameter

A URL redirection to untrusted site 'Open Redirect' vulnerability CWE-601 in FortiNAC may allow an unauthenticated attacker to redirect users to any arbitrary website via a crafted URL...

4.3CVSS5.4AI score0.00422EPSS
Exploits0Affected Software1
NVD
NVD
added 2023/05/02 9:15 a.m.13 views

CVE-2023-2000

Mattermost Desktop App fails to validate a mattermost server redirection and navigates to an arbitrary website...

5.4CVSS5.5AI score0.00363EPSS
Exploits0References1
Prion
Prion
added 2023/05/02 9:15 a.m.20 views

Code injection

Mattermost Desktop App fails to validate a mattermost server redirection and navigates to an arbitrary website...

4.9CVSS5.6AI score0.00363EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/02 12:0 a.m.7 views

PT-2023-17400 · Mattermost · Mattermost Desktop App

Name of the Vulnerable Software and Affected Versions: Mattermost Desktop App affected versions not specified Description: The Mattermost Desktop App has an issue where it fails to validate a Mattermost server redirection, allowing it to navigate to an arbitrary website. Recommendations: At the...

5.4CVSS5.4AI score0.00363EPSS
Exploits0References3
Veracode
Veracode
added 2023/03/02 9:55 a.m.17 views

Open Redirect

web2py is vulnerable to Open Redirect. A remote attacker is able to redirect the user to an arbitrary website by providing a specially crafted URL, which can result in a phishing attack...

6.1CVSS6.2AI score0.02382EPSS
Exploits1References6Affected Software1
RedhatCVE
RedhatCVE
added 2023/02/22 4:59 a.m.49 views

CVE-2022-38779

An open redirect flaw was found in Kibana. This issue can lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL...

6.1CVSS6.2AI score0.00513EPSS
Exploits0References4
NVD
NVD
added 2023/02/22 12:15 a.m.31 views

CVE-2022-38779

An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL...

6.1CVSS6.2AI score0.00513EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/02/21 12:0 a.m.28 views

CVE-2022-38779

An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL...

6.4AI score0.00513EPSS
Exploits0References2
Veracode
Veracode
added 2022/11/23 12:43 p.m.29 views

Open Redirect

kibana is vulnerable to open redirect. The vulnerability exists due to flawed router path checks which allows an attacker to redirect the user to an arbitrary website...

6.1CVSS6.2AI score0.00537EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2022/11/18 11:15 p.m.20 views

CVE-2021-22141

An open redirect flaw was found in Kibana versions before 7.13.0 and 6.8.16. If a logged in user visits a maliciously crafted URL, it could result in Kibana redirecting the user to an arbitrary website...

6.1CVSS0.00537EPSS
Exploits0References2
Rows per page
Query Builder