Security Advisory

CVE-2017-18178

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-02-12 14:00:00

Last updated 2024-09-16 18:29:33

Assigner mitre

State PUBLISHED

Description

Authenticate/SWT in Progress Sitefinity 9.1 has an open redirect issue in which an authentication token is sent to the redirection target, if the target is specified using a certain %40 syntax. This is fixed in 10.1.

← Browse all CVEs View on cve.org ↗