Lucene search
K

4 matches found

Circl
Circl
added 2024/11/27 6:50 p.m.5 views

CVE-2024-53264

creationtimestamp| type| source ---|---|--- 2024-11-27 18:50:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113556417023556349...

5.1CVSS5.7AI score0.0076EPSS
Exploits0References1
OSV
OSV
added 2024/11/27 6:31 p.m.4 views

CVE-2024-53264 Open Redirect Vulnerability in Loading Page in bunkerweb

bunkerweb is an Open-source and next-generation Web Application Firewall WAF. A open redirect vulnerability exists in the loading endpoint, allowing attackers to redirect authenticated users to arbitrary external URLs via the "next" parameter. The loading endpoint accepts and uses an unvalidated...

5.1CVSS6.8AI score0.0076EPSS
Exploits0References3
CVE
CVE
added 2024/11/27 6:31 p.m.58 views

CVE-2024-53264

Summary: CVE-2024-53264 is an open redirect vulnerability in bunkerweb’s loading endpoint. The endpoint accepts an unvalidated the "next" parameter, enabling authenticated users to be redirected to arbitrary external URLs (e.g., /loading?next=https://google.com). This could be leveraged for phish...

5.1CVSS6.9AI score0.0076EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/27 6:31 p.m.13 views

CVE-2024-53264 Open Redirect Vulnerability in Loading Page in bunkerweb

bunkerweb is an Open-source and next-generation Web Application Firewall WAF. A open redirect vulnerability exists in the loading endpoint, allowing attackers to redirect authenticated users to arbitrary external URLs via the "next" parameter. The loading endpoint accepts and uses an unvalidated...

5.1CVSS6.7AI score0.0076EPSS
Exploits0References1
Rows per page
Query Builder