映射到 CWE-601 的搜索结果 (81)

CVE-2018-3743(发布:2018-06-01 13:29:00)NM
CVSS5.8

[原文]Open redirect in hekto <=0.2.3 when target domain name is used as html filename on server.

CVE-2015-8094(发布:2018-05-22 14:29:00)NM
CVSS5.8

[原文]Open redirect vulnerability in Cloudera HUE before 3.10.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the next parameter.

CVE-2018-5304(发布:2018-05-11 17:29:00)NM
CVSS4.3

[原文]An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The affected web interface is vulnerable to ClickJacking or UI Redressing: it is possible to access the web application in an iframe, and clicking on the iframe will redirect to a third-party application or perform other malicious actions.

CVE-2018-1248(发布:2018-05-08 09:29:01)NMPS
CVSS5.8

[原文]RSA Authentication Manager Security Console, Operation Console and Self-Service Console, version 8.3 and earlier, is affected by a Host header injection vulnerability. This could allow a remote attacker to potentially poison HTTP cache and subsequently redirect users to arbitrary web domains.

CVE-2017-0363(发布:2018-04-13 12:29:00)NM
CVSS5.8

[原文]Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 has a flaw where Special:UserLogin?returnto=interwiki:foo will redirect to external sites.

CVE-2017-0364(发布:2018-04-13 12:29:00)NM
CVSS5.8

[原文]Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where Special:Search allows redirects to any interwiki link.

12345678下一页尾页 第1页 / 共14页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站