Open Redirect Vulnerability in IFTOP by WellChoose
CVE-2026-3824

5.1MEDIUM

Key Information:

Vendor: Wellchoose
Status: Iftop
Vendor: CVE Published:; 11 March 2026

What is CVE-2026-3824?

IFTOP, a product developed by WellChoose, presents an open redirect vulnerability that enables authenticated remote attackers to create deceptive URLs. These URLs can manipulate users into unwittingly visiting malicious websites. This flaw poses a significant risk as it could be exploited to execute phishing attacks, potentially leading to unauthorized access to sensitive information or further exploitation of affected systems.

Affected Version(s)

IFTOP 0

References

https://www.twcert.org.tw/tw/cp-132-10755-94136-1.html

third-party-advisory

https://www.twcert.org.tw/en/cp-139-10756-73f66-2.html

third-party-advisory

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 11, 2026
Vulnerability Reserved
Mar 9, 2026

CVE-2026-3824 Data

JSON

Wellchoose

What is CVE-2026-3824?

Affected Version(s)

References

CVSS V4

Timeline