CVE-2023-6552
6.1MEDIUMLack of "current" GET parameter validation during the action of changing a language leads to an open redirect vulnerability.
Published: 1/8/2024Updated: 4/17/2025
Description
Lack of "current" GET parameter validation during the action of changing a language leads to an open redirect vulnerability.
AI AnalysisPowered by AI
Affected Products
tasmoadmintasmoadmin
References
- https://cert.pl/en/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://github.com/TasmoAdmin/TasmoAdmin/pull/1039Patch
- https://cert.pl/en/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://github.com/TasmoAdmin/TasmoAdmin/pull/1039Patch