4 matches found
CVE-2025-2192
A vulnerability, which was classified as problematic, was found in Stoque Zeev.it 4.24. This affects an unknown part of the file /Login?inpLostSession=1 of the component Login Page. The manipulation of the argument inpRedirectURL leads to server-side request forgery. It is possible to initiate th...
CVE-2025-2192 Stoque Zeev.it Login Page server-side request forgery
A vulnerability, which was classified as problematic, was found in Stoque Zeev.it 4.24. This affects an unknown part of the file /Login?inpLostSession=1 of the component Login Page. The manipulation of the argument inpRedirectURL leads to server-side request forgery. It is possible to initiate th...
CVE-2025-2192
CVE-2025-2192 concerns Stoque Zeev.it 4.24, specifically the Login Page’s file segment and the parameter inpRedirectURL. The root cause is a server-side request forgery resulting from manipulating inpRedirectURL in the login flow (the code path mentioned as /Login?inpLostSession=1). According to ...
CVE-2025-2192 Stoque Zeev.it Login Page server-side request forgery
A vulnerability, which was classified as problematic, was found in Stoque Zeev.it 4.24. This affects an unknown part of the file /Login?inpLostSession=1 of the component Login Page. The manipulation of the argument inpRedirectURL leads to server-side request forgery. It is possible to initiate th...