Open Redirect

oils is vulnerable to open direct. The vulnerability exists in Web.js due to a lack of url validations which allows an attacker to redirect a user to an arbitrary URL...

GHSA-V279-V2XM-WHQ9 Oils JS vulnerable to Open Redirect

A vulnerability was found in oils-js. This vulnerability affects unknown code of the file core/Web.js. The manipulation leads to open redirect and the attack can be initiated remotely. The name of the patch is fad8fbae824a7d367dacb90d56cb02c5cb999d42. It is recommended to apply a patch to fix thi...

Oils JS vulnerable to Open Redirect

A vulnerability was found in oils-js. This vulnerability affects unknown code of the file core/Web.js. The manipulation leads to open redirect and the attack can be initiated remotely. The name of the patch is fad8fbae824a7d367dacb90d56cb02c5cb999d42. It is recommended to apply a patch to fix thi...

CVE-2021-4260

A vulnerability was found in oils-js. It has been declared as critical. This vulnerability affects unknown code of the file core/Web.js. The manipulation leads to open redirect. The attack can be initiated remotely. The name of the patch is fad8fbae824a7d367dacb90d56cb02c5cb999d42. It is...

Open redirect

A vulnerability was found in oils-js. It has been declared as critical. This vulnerability affects unknown code of the file core/Web.js. The manipulation leads to open redirect. The attack can be initiated remotely. The name of the patch is fad8fbae824a7d367dacb90d56cb02c5cb999d42. It is...

CVE-2021-4260 oils-js Web.js redirect

A vulnerability was found in oils-js. It has been declared as critical. This vulnerability affects unknown code of the file core/Web.js. The manipulation leads to open redirect. The attack can be initiated remotely. The name of the patch is fad8fbae824a7d367dacb90d56cb02c5cb999d42. It is...

CVE-2021-4260 oils-js Web.js redirect

A vulnerability was found in oils-js. It has been declared as critical. This vulnerability affects unknown code of the file core/Web.js. The manipulation leads to open redirect. The attack can be initiated remotely. The name of the patch is fad8fbae824a7d367dacb90d56cb02c5cb999d42. It is...

CVE-2020-7808

In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update processing without integrity check on update moduleweb.js allows an attacker to modify arguments which causes downloading a random DLL and injection on it...

Design/Logic Flaw

In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update processing without integrity check on update moduleweb.js allows an attacker to modify arguments which causes downloading a random DLL and injection on it...

CVE-2020-7808

RAONWIZ K Upload, versions 2018.0.2.51 and prior, is affected. The flaw lies in the update module (web.js) where automatic update processing occurs without an integrity check, allowing an attacker to modify arguments and cause the downloader to fetch a random DLL, followed by injection. Impact st...

PT-2020-19805 · Raonwiz · Raonwiz K Upload

Name of the Vulnerable Software and Affected Versions: RAONWIZ K Upload versions 2018.0.2.51 and prior Description: The issue allows an attacker to modify arguments in the update module, specifically in the web.js file, due to the lack of an integrity check during automatic update processing. Thi...