Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/07/17 2:44 p.m.2 views

CVE-2025-54066 DiracX-Web login page has Open Redirect vulnerability

DiracX-Web is a web application that provides an interface to interact with the DiracX services. Prior to version 0.1.0-a8, an attacker can forge a request that they can pass to redirect an authenticated user to another arbitrary website. In the login page, DiracX-Web has a redirect field which i...

4.7CVSS7AI score0.00332EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/17 2:44 p.m.10 views

CVE-2025-54066 DiracX-Web login page has Open Redirect vulnerability

DiracX-Web is a web application that provides an interface to interact with the DiracX services. Prior to version 0.1.0-a8, an attacker can forge a request that they can pass to redirect an authenticated user to another arbitrary website. In the login page, DiracX-Web has a redirect field which i...

4.7CVSS0.00332EPSS
Exploits0References3
CVE
CVE
added 2025/07/17 2:44 p.m.23 views

CVE-2025-54066

DiracX-Web has an Open Redirect vulnerability in versions prior to 0.1.0-a8. The login page’s redirect field accepts an arbitrary URI and is not validated. When combined with parameter pollution, an attacker can cloak a malicious redirect, potentially phishing users and harvesting credentials. Th...

4.7CVSS6.4AI score0.00332EPSS
Exploits0References3
OSV
OSV
added 2025/07/17 2:44 p.m.6 views

CVE-2025-54066 DiracX-Web login page has Open Redirect vulnerability

DiracX-Web is a web application that provides an interface to interact with the DiracX services. Prior to version 0.1.0-a8, an attacker can forge a request that they can pass to redirect an authenticated user to another arbitrary website. In the login page, DiracX-Web has a redirect field which i...

4.7CVSS6.6AI score0.00332EPSS
Exploits0References5
Rows per page
Query Builder