CVE-2026-10861 | MISP up to 2.5.38 routeafterlogin pre_login_requested_url redirect

Inserito da Angelo Barbosa | Giu 4, 2026 | CVE

A vulnerability classified as problematic has been found in MISP up to 2.5.38. This issue affects the function UsersController::routeafterlogin. The manipulation of the argument pre_login_requested_url leads to open redirect.

This vulnerability is traded as CVE-2026-10861. It is possible to initiate the attack remotely. There is no exploit available.

To fix this issue, it is recommended to deploy a patch.

CVE-2026-10861 | MISP up to 2.5.38 routeafterlogin pre_login_requested_url redirect

Post correlati

CVE-2024-1535 | ProfilePress Plugin up to 4.15.2 on WordPress Shortcode cross site scripting

CVE-2026-3846 | Mozilla Firefox up to 148.0.1 CSS Parser cross-domain policy

CVE-2024-8939 | Red Hat Enterprise Linux AI ilab Model Serve best_of resource consumption

CVE-2023-7217 | libEBML MemIOCallback::read integer overflow