SickChill 输入验证错误漏洞

SickChill is an application in the SickChill open source. SickChill suffers from an input validation error vulnerability that stems from the next parameter in a user-controlled login endpoint that can receive arbitrary content, which can be exploited by an authenticated attacker to redirect the...

Taiga 安全漏洞

Taiga is a free open source project management tool from Taiga Open Source. A security vulnerability exists in Taiga version 6.8.1, which stems from the presence of an open redirection vulnerability that allows an attacker to redirect a user to an arbitrary website by appending a crafted link...

PT-2024-35776 · Taiga · Taiga

Name of the Vulnerable Software and Affected Versions: Taiga version 6.8.1 Description: The issue allows attackers to redirect users to arbitrary websites by appending a crafted link to the /login?next= parameter in the login page URL. This can potentially lead to unauthorized access...

pyLoad 输入验证错误漏洞

pyLoad is a free and open source download manager written in Python by pyLoad Open Source. An input validation error vulnerability exists in pyload version 0.5.0 due to improper handling of the "next" parameter in the login function. An attacker could use this vulnerability to redirect users to a...

Flask Middleware Flask-security Security Vulnerabilities

Flask Middleware Flask-security is a Python-based codebase from the Flask Middleware organization that provides security features for Flask applications. Flask Middleware Flask-security A security vulnerability exists in Flask-Security-Too 5.3.2 and earlier versions that originates from a...

DEBIAN-CVE-2012-3540

Open redirect vulnerability in views/authforms.py in OpenStack Dashboard Horizon Essex 2012.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the next parameter to auth/login/. NOTE: this issue was originally assigned CVE-2012-3542 by...