11 matches found
EUVD-2024-17193
Malicious code in bioql PyPI...
CVE-2024-1440
An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...
WSO2 is vulnerable to Open Redirect through multi-option URL in its authentication endpoint
An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...
GHSA-CP5V-2HMC-3VJX WSO2 is vulnerable to Open Redirect through multi-option URL in its authentication endpoint
An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...
Open Redirect
Overview Affected versions of this package are vulnerable to Open Redirect due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. An attacker can redirect users to an attacker-controlled site by crafting a valid link that...
CVE-2024-1440
An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...
CVE-2024-1440 Open Redirection in Multiple WSO2 Products via Multi-Option Authentication Endpoint
An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...
CVE-2024-1440
CVE-2024-1440 describes an open redirection in multiple WSO2 products caused by improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A crafted link can redirect users to attacker-controlled sites, enabling phishing or similar soci...
CVE-2024-1440 Open Redirection in Multiple WSO2 Products via Multi-Option Authentication Endpoint
An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site. By...
PT-2025-23541
Name of the Vulnerable Software and Affected Versions WSO2 products affected versions not specified Description An open redirection issue exists due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. This allows a malicious...
OESA-2023-1529 python-GitPython security update
GitPython is a python library used to interact with git repositories, high-level like git-porcelain, or low-level like git-plumbing. Security Fixes: All versions of package gitpython are vulnerable to Remote Code Execution RCE due to improper user input validation, which makes it possible to inje...