2 matches found
CVE-2025-71244
SPIP before 4.4.5 and 4.3.9 allows an Open Redirect via the login form when used in AJAX mode. An attacker can craft a malicious URL that, when visited by a victim, redirects them to an arbitrary external site after login. This vulnerability only affects sites where the login page has been...
Discuz Frontend Override Login Vulnerability
Discuz is a general purpose community forum software system. There exists an override login vulnerability in the frontend of Discuz. The vulnerability is due to the administrator login background need account password, the vulnerability will not affect the background, the attacker may log in any...