URL Redirection Vulnerability in UJCMS 9.6.3 Exposes Users to Phishing Attacks
CVE-2024-55452
What is CVE-2024-55452?
A high-impact URL redirection vulnerability has been identified in UJCMS version 9.6.3, stemming from insufficient validation of URLs during the upload and rendering of new block and carousel items. This flaw allows authenticated attackers to manipulate link redirection, leading unprivileged users to unauthorized, attacker-controlled web pages. Users who interact with these compromised block items face the risk of being redirected to untrusted domains, jeopardizing sensitive information like JSON Web Tokens and other private data. This vulnerability highlights the critical need for rigorous input validation and robust security measures in web applications.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.