A CWE-601 URL Redirection to Untrusted Site vulnerability exists that could cause an openredirect vulnerability leading to a cross site scripting attack. By providing a URL-encoded input
attackers can cause the software’s web application to redirect to the chosen domain after a
successful login is performed.
Metrics
Affected Vendors & Products
References
History
Mon, 02 Dec 2024 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: schneider
Published: 2023-11-15T03:47:17.684Z
Updated: 2024-12-02T21:11:40.870Z
Reserved: 2023-11-07T10:57:54.715Z
Link: CVE-2023-5986
Vulnrichment
Updated: 2024-08-02T08:14:25.141Z
NVD
Status : Modified
Published: 2023-11-15T04:15:19.487
Modified: 2024-11-21T08:42:55.557
Link: CVE-2023-5986
Redhat
No data.