CVE-2024-53995 – SickChill Open Redirect Vulnerability

1月 8, 2025
10:17 pm

CVE ID : CVE-2024-53995

Published : Jan. 8, 2025, 9:15 p.m. | 1 hour, 1 minute ago

Description : SickChill is an automatic video library manager for TV shows. A user-controlled `login` endpoint’s `next_` parameter takes arbitrary content. Prior to commit c7128a8946c3701df95c285810eb75b2de18bf82, an authenticated attacker may use this to redirect the user to arbitrary destinations, leading to open redirect. Commit c7128a8946c3701df95c285810eb75b2de18bf82 changes the login page to redirect to `settings.DEFAULT_PAGE` instead of to the `next` parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-53995 – SickChill Open Redirect Vulnerability

Elvescore.io

Recent Posts

CVE-2024-13194 – Sucms SQL Injection Vulnerability

CVE-2024-13195 – Donglight Bookstore Server-Side Request Forgery (SSRF)

CVE-2024-13196 – Donglight Bookstore Cross-Site Scripting Vulnerability

CVE-2024-13197 – “Donglight Bookstore Critical Cross-Site Scripting Vulnerability”

CVE-2024-13191 – ZeroWdd Myblog Unrestricted File Upload Vulnerability

CVE-2024-13192 – ZeroWdd myblog Cross-Site Scripting Vulnerability

CVE-2024-53995 – SickChill Open Redirect Vulnerability

CVE-2024-53995 – SickChill Open Redirect Vulnerability