Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
2 vulnerabilities by hs-web
CVE-2026-11477 (GCVE-0-2026-11477)
Vulnerability from cvelistv5 – Published: 2026-06-08 01:45 – Updated: 2026-06-08 13:42 X_Open Source
VLAI
Title
hs-web hsweb-framework OAuth2 Client OAuth2Client.java OAuth2Client redirect
Summary
A vulnerability was detected in hs-web hsweb-framework up to 5.0.1. This affects the function OAuth2Client of the file hsweb-authorization/hsweb-authorization-oauth2/src/main/java/org/hswebframework/web/oauth2/server/OAuth2Client.java of the component OAuth2 Client. The manipulation results in open redirect. The attack can be executed remotely. The exploit is now public and may be used. The patch is identified as c2882679a9125cea52678151af5ae213cbd52579. Applying a patch is advised to resolve this issue.
Severity
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-601 - Open Redirect
Assigner
References
8 references
| URL | Tags |
|---|---|
| https://vuldb.com/vuln/369097 | vdb-entrytechnical-description |
| https://vuldb.com/vuln/369097/cti | signaturepermissions-required |
| https://vuldb.com/cve/CVE-2026-11477 | third-party-advisory |
| https://vuldb.com/submit/833962 | third-party-advisory |
| https://github.com/hs-web/hsweb-framework/issues/354 | exploitissue-tracking |
| https://github.com/hs-web/hsweb-framework/pull/355 | issue-trackingpatch |
| https://github.com/hs-web/hsweb-framework/commit/… | patch |
| https://github.com/hs-web/hsweb-framework/ | product |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| hs-web | hsweb-framework |
Affected:
5.0.0
Affected: 5.0.1 cpe:2.3:a:hs-web:hsweb-framework:*:*:*:*:*:*:*:* |
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-11477",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-06-08T13:42:34.624757Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-08T13:42:42.500Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"cpes": [
"cpe:2.3:a:hs-web:hsweb-framework:*:*:*:*:*:*:*:*"
],
"modules": [
"OAuth2 Client"
],
"product": "hsweb-framework",
"vendor": "hs-web",
"versions": [
{
"status": "affected",
"version": "5.0.0"
},
{
"status": "affected",
"version": "5.0.1"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "0Xrry (VulDB User)"
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was detected in hs-web hsweb-framework up to 5.0.1. This affects the function OAuth2Client of the file hsweb-authorization/hsweb-authorization-oauth2/src/main/java/org/hswebframework/web/oauth2/server/OAuth2Client.java of the component OAuth2 Client. The manipulation results in open redirect. The attack can be executed remotely. The exploit is now public and may be used. The patch is identified as c2882679a9125cea52678151af5ae213cbd52579. Applying a patch is advised to resolve this issue."
}
],
"metrics": [
{
"cvssV4_0": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P",
"version": "4.0"
}
},
{
"cvssV3_1": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.1"
}
},
{
"cvssV3_0": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.0"
}
},
{
"cvssV2_0": {
"baseScore": 5,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N/E:POC/RL:OF/RC:C",
"version": "2.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-601",
"description": "Open Redirect",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-08T01:45:11.512Z",
"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"shortName": "VulDB"
},
"references": [
{
"name": "VDB-369097 | hs-web hsweb-framework OAuth2 Client OAuth2Client.java OAuth2Client redirect",
"tags": [
"vdb-entry",
"technical-description"
],
"url": "https://vuldb.com/vuln/369097"
},
{
"name": "VDB-369097 | CTI Indicators (IOB, IOC, TTP, IOA)",
"tags": [
"signature",
"permissions-required"
],
"url": "https://vuldb.com/vuln/369097/cti"
},
{
"name": "CVE-2026-11477 | CVE Analysis and Report",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/cve/CVE-2026-11477"
},
{
"name": "Submit #833962 | GitHub hsweb-framework 5.0.0 Open Redirect",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/submit/833962"
},
{
"tags": [
"exploit",
"issue-tracking"
],
"url": "https://github.com/hs-web/hsweb-framework/issues/354"
},
{
"tags": [
"issue-tracking",
"patch"
],
"url": "https://github.com/hs-web/hsweb-framework/pull/355"
},
{
"tags": [
"patch"
],
"url": "https://github.com/hs-web/hsweb-framework/commit/c2882679a9125cea52678151af5ae213cbd52579"
},
{
"tags": [
"product"
],
"url": "https://github.com/hs-web/hsweb-framework/"
}
],
"tags": [
"x_open-source"
],
"timeline": [
{
"lang": "en",
"time": "2026-06-07T00:00:00.000Z",
"value": "Advisory disclosed"
},
{
"lang": "en",
"time": "2026-06-07T02:00:00.000Z",
"value": "VulDB entry created"
},
{
"lang": "en",
"time": "2026-06-07T11:45:30.000Z",
"value": "VulDB entry last update"
}
],
"title": "hs-web hsweb-framework OAuth2 Client OAuth2Client.java OAuth2Client redirect"
}
},
"cveMetadata": {
"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"assignerShortName": "VulDB",
"cveId": "CVE-2026-11477",
"datePublished": "2026-06-08T01:45:11.512Z",
"dateReserved": "2026-06-07T09:40:18.483Z",
"dateUpdated": "2026-06-08T13:42:42.500Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2026-11470 (GCVE-0-2026-11470)
Vulnerability from cvelistv5 – Published: 2026-06-08 00:00 – Updated: 2026-06-08 13:03 X_Open Source
VLAI
Title
hs-web hsweb-framework File Upload FileUploadProperties.java denied path traversal
Summary
A vulnerability has been found in hs-web hsweb-framework up to 5.0.1. The affected element is the function denied of the file hsweb-system/hsweb-system-file/src/main/java/org/hswebframework/web/file/FileUploadProperties.java of the component File Upload. The manipulation of the argument filename leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of the patch is 8009845b577d8a2c4bbf4fdd8e8913799a714be6. It is suggested to install a patch to address this issue.
Severity
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-22 - Path Traversal
Assigner
References
8 references
| URL | Tags |
|---|---|
| https://vuldb.com/vuln/369090 | vdb-entrytechnical-description |
| https://vuldb.com/vuln/369090/cti | signaturepermissions-required |
| https://vuldb.com/cve/CVE-2026-11470 | third-party-advisory |
| https://vuldb.com/submit/833856 | third-party-advisory |
| https://github.com/hs-web/hsweb-framework/issues/344 | exploitissue-tracking |
| https://github.com/hs-web/hsweb-framework/issues/… | issue-tracking |
| https://github.com/hs-web/hsweb-framework/commit/… | patch |
| https://github.com/hs-web/hsweb-framework/ | product |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| hs-web | hsweb-framework |
Affected:
5.0.0
Affected: 5.0.1 cpe:2.3:a:hs-web:hsweb-framework:*:*:*:*:*:*:*:* |
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-11470",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-06-08T13:03:20.795103Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-06-08T13:03:33.387Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"cpes": [
"cpe:2.3:a:hs-web:hsweb-framework:*:*:*:*:*:*:*:*"
],
"modules": [
"File Upload"
],
"product": "hsweb-framework",
"vendor": "hs-web",
"versions": [
{
"status": "affected",
"version": "5.0.0"
},
{
"status": "affected",
"version": "5.0.1"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "reporter",
"value": "0Xrry (VulDB User)"
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been found in hs-web hsweb-framework up to 5.0.1. The affected element is the function denied of the file hsweb-system/hsweb-system-file/src/main/java/org/hswebframework/web/file/FileUploadProperties.java of the component File Upload. The manipulation of the argument filename leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of the patch is 8009845b577d8a2c4bbf4fdd8e8913799a714be6. It is suggested to install a patch to address this issue."
}
],
"metrics": [
{
"cvssV4_0": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
"version": "4.0"
}
},
{
"cvssV3_1": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
"version": "3.1"
}
},
{
"cvssV3_0": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
"version": "3.0"
}
},
{
"cvssV2_0": {
"baseScore": 6.5,
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C",
"version": "2.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-22",
"description": "Path Traversal",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-08T00:00:16.276Z",
"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"shortName": "VulDB"
},
"references": [
{
"name": "VDB-369090 | hs-web hsweb-framework File Upload FileUploadProperties.java denied path traversal",
"tags": [
"vdb-entry",
"technical-description"
],
"url": "https://vuldb.com/vuln/369090"
},
{
"name": "VDB-369090 | CTI Indicators (IOB, IOC, TTP, IOA)",
"tags": [
"signature",
"permissions-required"
],
"url": "https://vuldb.com/vuln/369090/cti"
},
{
"name": "CVE-2026-11470 | CVE Analysis and Report",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/cve/CVE-2026-11470"
},
{
"name": "Submit #833856 | GitHub hsweb-framework 5.0.0 Path Traversal: \u0027../filedir\u0027",
"tags": [
"third-party-advisory"
],
"url": "https://vuldb.com/submit/833856"
},
{
"tags": [
"exploit",
"issue-tracking"
],
"url": "https://github.com/hs-web/hsweb-framework/issues/344"
},
{
"tags": [
"issue-tracking"
],
"url": "https://github.com/hs-web/hsweb-framework/issues/344#issuecomment-3798035002"
},
{
"tags": [
"patch"
],
"url": "https://github.com/hs-web/hsweb-framework/commit/8009845b577d8a2c4bbf4fdd8e8913799a714be6"
},
{
"tags": [
"product"
],
"url": "https://github.com/hs-web/hsweb-framework/"
}
],
"tags": [
"x_open-source"
],
"timeline": [
{
"lang": "en",
"time": "2026-06-07T00:00:00.000Z",
"value": "Advisory disclosed"
},
{
"lang": "en",
"time": "2026-06-07T02:00:00.000Z",
"value": "VulDB entry created"
},
{
"lang": "en",
"time": "2026-06-07T11:35:00.000Z",
"value": "VulDB entry last update"
}
],
"title": "hs-web hsweb-framework File Upload FileUploadProperties.java denied path traversal"
}
},
"cveMetadata": {
"assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
"assignerShortName": "VulDB",
"cveId": "CVE-2026-11470",
"datePublished": "2026-06-08T00:00:16.276Z",
"dateReserved": "2026-06-07T09:29:57.116Z",
"dateUpdated": "2026-06-08T13:03:33.387Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}