CVE-2024-1440 – WSO2 Open Redirection Vulnerability

CVE ID : CVE-2024-1440

Published : June 2, 2025, 5:15 p.m. | 1 hour, 11 minutes ago

Description : An open redirection vulnerability exists in multiple WSO2 products due to improper validation of the multi-option URL in the authentication endpoint when multi-option authentication is enabled. A malicious actor can craft a valid link that redirects users to an attacker-controlled site.

By exploiting this vulnerability, an attacker may trick users into visiting a malicious page, enabling phishing attacks to harvest sensitive information or perform other harmful actions.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

نوشته های مشابه

CVE-2025-47724 – Delta Electronics CNCSoft RCE

CVE-2025-47725 – Delta Electronics CNCSoft Remote Code Execution Vulnerability

CVE-2025-47726 – Delta Electronics CNCSoft Remote Code Execution Vulnerability

CVE-2025-47727 – Delta Electronics CNCSoft File Path Traversal Remote Code Execution Vulnerability