CVE-2025-3859

MEDIUM Year: 2025
CVSS v3 Score
4.3
Medium
Weakness Type
CWE-601
View all →

Vulnerability Description

Websites directing users to long URLs that caused eliding to occur in the location view could leverage the truncating behavior to potentially trick users into thinking they were on a different webpage This vulnerability affects Focus < 138.

Related Vulnerabilities

CVE-2018-11784

MEDIUM
CVSS:4.3(Medium)

When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory (e.g. redirecting to '/foo/' when the user requested '/fo...

CWE-6012018

CVE-2018-5304

MEDIUM
CVSS:4.3(Medium)

An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The affected web interface is vulnerable to ClickJacking or UI Redressing: it is possible to access the web applic...

CWE-6012018

CVE-2019-14403

MEDIUM
CVSS:4.3(Medium)

cPanel before 78.0.18 offers an open mail relay because of incorrect domain-redirect routing (SEC-483).

CWE-6012019

CVE-2019-1954

MEDIUM
CVSS:4.3(Medium)

A vulnerability in the web-based management interface of Cisco Webex Meetings Server Software could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. The vulnerabi...

CWE-6012019

CVE-2020-1059

MEDIUM
CVSS:4.3(Medium)

A spoofing vulnerability exists when Microsoft Edge does not properly parse HTTP content, aka 'Microsoft Edge Spoofing Vulnerability'.

CWE-6012020

CVE-2020-3311

MEDIUM
CVSS:4.3(Medium)

A vulnerability in the web interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerability i...

CWE-6012020