描述
Lack of "current" GET parameter validation during the action of changing a language leads to an open redirect vulnerability.
AI分析AI驱动
受影响产品
tasmoadmintasmoadmin
参考资料
- https://cert.pl/en/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://github.com/TasmoAdmin/TasmoAdmin/pull/1039Patch
- https://cert.pl/en/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://cert.pl/posts/2024/01/CVE-2023-6552/Third Party Advisory
- https://github.com/TasmoAdmin/TasmoAdmin/pull/1039Patch