A flaw was found in mod_auth_mellon... CVE-2021-3639

- AV AC AU C I A
发布: 2022-08-22
修订: 2024-11-21

A flaw was found in mod_auth_mellon where it does not sanitize logout URLs properly. This issue could be used by an attacker to facilitate phishing attacks by tricking users into visiting a trusted web application URL that redirects to an external and potentially malicious server. The highest threat from this liability is to confidentiality and integrity.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息