Vulnerability Bulletins

MSA-23-0028: Open redirect risk on admin view all policies page

System information

Affected software PHP


por Michael Hawkins. The admin view all policies page URL required additional sanitizing to prevent an open redirect risk.Severity/Risk:MinorVersions affected:4.2 to 4.2.1, 4.1 to 4.1.4, 4.0 to 4.0.9, 3.11 to 3.11.15, 3.9 to 3.9.22 and earlier unsupported versionsVersions fixed:4.2.2, 4.1.5, 4.0.10, 3.11.16 and 3.9.23Reported by:Darko MileticCVE identifier:CVE-2023-40323Changes (master):

More info:

Standar resources

Property Value
CVE CVE-2023-40323.

Version history

Version Comments Date
Ministerio de Defensa