Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-17193

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00202EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/04 5:14 p.m.15 views

CVE-2024-1440

An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...

5.4CVSS6.9AI score0.00202EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/06/02 6:30 p.m.5 views

WSO2 is vulnerable to Open Redirect through multi-option URL in its authentication endpoint

An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...

6.1CVSS6.9AI score0.00202EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/06/02 6:30 p.m.2 views

GHSA-CP5V-2HMC-3VJX WSO2 is vulnerable to Open Redirect through multi-option URL in its authentication endpoint

An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...

5.4CVSS5.9AI score0.00202EPSS
Exploits0References7
Snyk
Snyk
added 2025/06/02 5:41 p.m.4 views

Open Redirect

Overview Affected versions of this package are vulnerable to Open Redirect due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. An attacker can redirect users to an attacker-controlled site by crafting a valid link that...

6.1CVSS6.9AI score0.00202EPSS
Exploits0References2
OSV
OSV
added 2025/06/02 5:15 p.m.3 views

CVE-2024-1440

An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...

6.1CVSS6.9AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/02 4:51 p.m.7 views

CVE-2024-1440 Open Redirection in Multiple WSO2 Products via Multi-Option Authentication Endpoint

An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...

5.4CVSS5.4AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2025/06/02 4:51 p.m.68 views

CVE-2024-1440

CVE-2024-1440 describes an open redirection in multiple WSO2 products caused by improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A crafted link can redirect users to attacker-controlled sites, enabling phishing or similar soci...

6.1CVSS5.4AI score0.00202EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2025/06/02 4:51 p.m.25 views

CVE-2024-1440 Open Redirection in Multiple WSO2 Products via Multi-Option Authentication Endpoint

An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...

5.4CVSS0.00202EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/02 12:0 a.m.10 views

PT-2025-23541

Name of the Vulnerable Software and Affected Versions WSO2 products affected versions not specified Description An open redirection issue exists due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. This allows a malicious...

6.1CVSS6.5AI score0.00202EPSS
Exploits0References6
OSV
OSV
added 2023/08/26 11:5 a.m.3 views

OESA-2023-1529 python-GitPython security update

GitPython is a python library used to interact with git repositories, high-level like git-porcelain, or low-level like git-plumbing. Security Fixes: All versions of package gitpython are vulnerable to Remote Code Execution RCE due to improper user input validation, which makes it possible to inje...

9.8CVSS7.4AI score0.05378EPSS
Exploits1References3
Rows per page
Query Builder