CVE-2024-53556
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Published Nov 25, 2024
Updated: Nov 27, 2024
CWE ID 79
Summary
CVE-2024-53556 is a newly discovered vulnerability affecting Taiga version 6.8.1. This issue involves an Open Redirect vulnerability on the login page. By appending a specially crafted URL to the /login?next= parameter, attackers can manipulate users into visiting malicious websites, putting them at risk of phishing attacks or data theft. This security flaw requires user interaction for exploitation and could pose a significant threat to organizations using this software if not promptly addressed.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Taiga