描述
A CWE-601 URL Redirection to Untrusted Site vulnerability exists that could cause an openredirect vulnerability leading to a cross site scripting attack. By providing a URL-encoded input attackers can cause the software’s web application to redirect to the chosen domain after a successful login is performed.
AI分析AI驱动
受影响产品
schneider-electricecostruxure_power_monitoring_expert
2020
schneider-electricecostruxure_power_monitoring_expert
2020
schneider-electricecostruxure_power_monitoring_expert
2020
schneider-electricecostruxure_power_monitoring_expert
2021
schneider-electricecostruxure_power_monitoring_expert
2021
参考资料
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-318-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-318-02.pdfVendor Advisory
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-318-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-318-02.pdfVendor Advisory