5 matches found
Cross-site Scripting (XSS)
Overview johnpbloch/wordpress-core is a web software you can use to create a website or blog. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the successurl and rejecturl parameters when requesting application passwords. An attacker can inject arbitrary web script...
CVE-2022-45582
Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...
DEBIAN-CVE-2022-45582
Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...
PYSEC-2023-153
Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...
PT-2023-14709 · Unknown · Horizon Web Dashboard
Name of the Vulnerable Software and Affected Versions: Horizon Web Dashboard versions 19.4.0 through 20.1.4 Description: The issue is related to an Open Redirect vulnerability via the success url parameter. This allows for potential redirection to unintended websites. Recommendations: For Horizon...