CVE-2023-6552
6.1MEDIUMLack of "current" GET parameter validation during the action of changing a language leads to an open redirect vulnerability.
Publicado: 1/8/2024Actualizado: 4/17/2025
Descripción
Lack of "current" GET parameter validation during the action of changing a language leads to an open redirect vulnerability.
Análisis IAImpulsado por IA
Productos Afectados
tasmoadmintasmoadmin
Referencias
- https://cert.pl/en/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://github.com/TasmoAdmin/TasmoAdmin/pull/1039Patch
- https://cert.pl/en/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://github.com/TasmoAdmin/TasmoAdmin/pull/1039Patch