2025-12-30 22:41:46
VulnCheck
PUBLISHED
Ksenia Security Lares 4.0 version 1.6 contains a URL redirection vulnerability in the cmdOk.xml script that allows attackers to manipulate the redirectPage GET parameter. Attackers can craft malicious links that redirect authenticated users to arbitrary websites when clicking on a specially constructed link hosted on a trusted domain.