VYPR
Unrated severityNVD Advisory· Published Jun 22, 2023· Updated Dec 5, 2024

CVE-2023-28799

CVE-2023-28799

Description

A URL parameter during login flow was vulnerable to injection. An attacker could insert a malicious domain in this parameter, which would redirect the user after auth and send the authorization token to the redirected domain.

Affected products

2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.