CVE Catalog

CVE-2026-12863

MediumCVSS 5.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.23%

13th percentile — higher than 13% of all known CVEs

Summary

An unvalidated redirect was contained in Venueless' social login functionality and could be exploited for phishing using trusted domains.

Risk Assessment

The organization may become a target for phishing attacks, potentially leading to user data theft and loss of trust in the system.

Recommendation

It is recommended to validate and verify all redirects in the social login functionality to prevent potential attacks.

Original NVD description (English source)

An unvalidated redirect was contained in Venueless' social login functionality and could be exploited for phishing using trusted domains.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS