CVE-2023-28874
- Reference to the description:
- Description:
- The next parameter in the /accounts/login endpoint of Seafile 9.0.6 allows attackers to redirect users to arbitrary sites.
- Last updated date:
- 12/12/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 12/12/2023
- Reference url to background
https://herolab.usd.de/en/security-advisories/usd-2022-0033/