Security Advisory

CVE-2024-1240

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-15 10:57:07

Last updated 2024-11-15 19:07:26

Assigner @huntr_ai

State PUBLISHED

Description

An open redirection vulnerability exists in pyload/pyload version 0.5.0. The vulnerability is due to improper handling of the next parameter in the login functionality. An attacker can exploit this vulnerability to redirect users to malicious sites, which can be used for phishing or other malicious activities. The issue is fixed in pyload-ng 0.5.0b3.dev79.

← Browse all CVEs View on cve.org ↗