An issue was discovered in ownCloud... CVE-2023-49104

- AV AC AU C I A
发布: 2023-11-21
修订: 2023-12-01

An issue was discovered in ownCloud owncloud/oauth2 before 0.6.1, when Allow Subdomains is enabled. An attacker is able to pass in a crafted redirect-url that bypasses validation, and consequently allows an attacker to redirect callbacks to a Top Level Domain controlled by the attacker.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息