Venki Supravizio BPM Open Redirect Vulnerability Leading to Reflected Cross-Site Scripting

Vulnerability

A vulnerability allowing open redirect has been identified in Venki Supravizio BPM versions through 18.1.1. This open redirect can be exploited to perform reflected cross-site scripting (XSS) attacks.

Impact

Exploitation of this vulnerability allows for open redirection, which can be used to conduct reflected cross-site scripting attacks.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

1.7

exploitability

6.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

1.7

exploitability

6.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Venki Supravizio BPM Open Redirect Vulnerability Leading to Reflected Cross-Site Scripting

Vulnerability

Impact

Affected Products

Venki Supravizio BPM

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating