CNNVD-202512-4946 Information
Dec 29, 2025
cve
CNNVD ID
CNNVD-202512-4946
Related CVE
- CNNVD Published: 2025-12-29
Description (Chinese)
Priority Web是以色列Priority公司的一个企业资源规划系统的Web端。 Priority Web存在输入验证错误漏洞,该漏洞源于URL重定向到不受信任的站点,可能导致开放重定向攻击。
Description (English)
Priority Web is the Web end of an enterprise resource planning system of the Israeli company Priority. Priority Web has an input-validation error that originates from the re-direction of the URL to untrustworthy sites, which could lead to open-ended re-direction attacks.
Hazard Level
High
Vulnerability Type
输入验证错误
Affected Vendor
Priority
Published
2025-12-29
Last Modified
2026-02-24
References
https://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0
Patch
https://www.priority-software.com/
Share on: