CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-28923

Caddy v2.4.6 was discovered to contain an open redirection vulnerability which allows attackers to redirect users to phishing websites via crafted URLs.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.132

EPSS Ranking 93.8%

CVSS Severity

CVSS v3 Score 6.1

References

https://lednerb.de/en/publications/responsible-disclosure/caddy-open-redirect-vulnerability/
https://lednerb.de/en/publications/responsible-disclosure/caddy-open-redirect-vulnerability/

Products affected by CVE-2022-28923

Caddyserver » Caddy » Version: 2.4.6

cpe:2.3:a:caddyserver:caddy:2.4.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-28923

Products

Pricing

Contact Us