CVE-2021-39425 - SeedDMS v6.0.15 was discovered to contain an open redirect vulnerability. An attacker may exploit th

CVE-2021-39425

Summary

SeedDMS v6.0.15 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.

References

https://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_Security_Testing/11-Client_Side_Testing/04-Testing_for_Client_Side_URL_Redirect
https://medium.com/@rohitgautam26/cve-2021-39425-8a336eba34dd

Vulnerable Configurations

cpe:2.3:a:seeddms:seeddms:6.0.15:*:*:*:*:*:*:*
cpe:2.3:a:seeddms:seeddms:6.0.15:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

CWE-601

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

31-07-2023 - 15:11

Published

20-07-2023 - 20:15

Last modified

31-07-2023 - 15:11