Open Redirect in Bunkerity Bunkerweb
CVE-2024-53264
bunkerweb is an Open-source and next-generation Web Application Firewall (WAF). A open redirect vulnerability exists in the loading endpoint, allowing attackers to redirect authenticated users to arbitrary external URLs via the "next" para…
Vulnerability class: Open Redirect
EPSS: 0.008 (51.1th percentile) — read the EPSS interpretation.
Affected products
- Bunkerity Bunkerweb — versions < 1.5.11
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)