Lucene search
+L

6 matches found

0day.today
0day.today
added 2021/06/02 12:0 a.m.67 views

Products.PluggableAuthService 2.6.0 - Open Redirect Vulnerability

Exploit Title: Products.PluggableAuthService 2.6.0 - Open Redirect Exploit Author: Piyush Patil Affected Component: Pluggable Zope authentication/authorization framework Component Link: https://pypi.org/project/Products.PluggableAuthService/ Version: =2.6.1"...

6.1CVSS6AI score0.08443EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/06/02 12:0 a.m.189 views

Products.PluggableAuthService 2.6.0 Open Redirect

Exploit Title: Products.PluggableAuthService 2.6.0 - Open Redirect Exploit Author: Piyush Patil Affected Component: Pluggable Zope authentication/authorization framework Component Link: https://pypi.org/project/Products.PluggableAuthService/ Version: =2.6.1"...

5.8CVSS6AI score0.08443EPSS
Exploits4
Exploit DB
Exploit DB
added 2021/06/02 12:0 a.m.205 views

Products.PluggableAuthService 2.6.0 - Open Redirect

Exploit Title: Products.PluggableAuthService 2.6.0 - Open Redirect Exploit Author: Piyush Patil Affected Component: Pluggable Zope authentication/authorization framework Component Link: https://pypi.org/project/Products.PluggableAuthService/ Version: =2.6.1"...

6.1CVSS6.3AI score0.08443EPSS
Exploits4
ATTACKERKB
ATTACKERKB
added 2021/03/08 9:15 p.m.6 views

CVE-2021-21337

Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. In Products.PluggableAuthService before version 2.6.0 there is an open redirect vulnerability. A maliciously crafted link to the login form and login functionality could redirect the browser to a differe...

6.1CVSS5.4AI score0.08443EPSS
Exploits4References5Affected Software1
Cvelist
Cvelist
added 2021/03/08 9:10 p.m.26 views

CVE-2021-21337 URL Redirection to Untrusted Site ('Open Redirect') in Products.PluggableAuthService

Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. In Products.PluggableAuthService before version 2.6.0 there is an open redirect vulnerability. A maliciously crafted link to the login form and login functionality could redirect the browser to a differe...

5.7CVSS6.5AI score0.08443EPSS
Exploits4References4
CVE
CVE
added 2021/03/08 9:10 p.m.137 views

CVE-2021-21337

CVE-2021-21337 affects the PluggableAuthService login flow in Products.PluggableAuthService (Zope). Versions before 2.6.0 are vulnerable to an open redirect via a crafted login/redirect, e.g., altering the login flow’s came_from parameter to attacker-controlled sites. The issue is fixed in 2.6.1;...

6.1CVSS5.8AI score0.08443EPSS
Exploits4References4Affected Software1
Rows per page
Query Builder