4 matches found
CVE-2024-53264
creationtimestamp| type| source ---|---|--- 2024-11-27 18:50:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113556417023556349...
CVE-2024-53264 Open Redirect Vulnerability in Loading Page in bunkerweb
bunkerweb is an Open-source and next-generation Web Application Firewall WAF. A open redirect vulnerability exists in the loading endpoint, allowing attackers to redirect authenticated users to arbitrary external URLs via the "next" parameter. The loading endpoint accepts and uses an unvalidated...
CVE-2024-53264
Summary: CVE-2024-53264 is an open redirect vulnerability in bunkerweb’s loading endpoint. The endpoint accepts an unvalidated the "next" parameter, enabling authenticated users to be redirected to arbitrary external URLs (e.g., /loading?next=https://google.com). This could be leveraged for phish...
CVE-2024-53264 Open Redirect Vulnerability in Loading Page in bunkerweb
bunkerweb is an Open-source and next-generation Web Application Firewall WAF. A open redirect vulnerability exists in the loading endpoint, allowing attackers to redirect authenticated users to arbitrary external URLs via the "next" parameter. The loading endpoint accepts and uses an unvalidated...