5 matches found
CVE-2025-58044
JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to v3.10.19 and v4.10.5, The /core/i18n// endpoint uses the Referer header as the redirection target without proper validation, which could lead to an Open Redirect vulnerability. This...
CVE-2025-58044 JumpServer has an Open Redirect Vulnerability
JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to v3.10.19 and v4.10.5, The /core/i18n// endpoint uses the Referer header as the redirection target without proper validation, which could lead to an Open Redirect vulnerability. This...
CVE-2025-58044 JumpServer has an Open Redirect Vulnerability
JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to v3.10.19 and v4.10.5, The /core/i18n// endpoint uses the Referer header as the redirection target without proper validation, which could lead to an Open Redirect vulnerability. This...
JumpServer 输入验证错误漏洞
JumpServer is an open source bastion machine from Hangzhou, China-based Feizhiyun Information Technology JumpServer. An input validation error vulnerability exists in JumpServer versions prior to v3.10.19 and prior to v4.10.5, which stems from the /core/i18n// endpoint not properly validating the...
[SECURITY] Fedora 25 Update: drupal7-title-1.0-0.7.alpha9.fc25
While working on the new content translation system http://api.drupal.org/api/group/fieldlanguage/7 for Drupal 7, we the Dr upal core i18n team faced the need to convert node titles to the Field API in o rder to make nodes fully translatable. We were not able to make this happen in Drupal 7 core ...