CVE-2025-35059

MEDIUM WAF: Medium
CVSS 6.1 Published: 2025-10-09
CWE-601

Newforma Info Exchange (NIX) '/DownloadWeb/hyperlinkredirect.aspx' provides an unauthenticated URL redirect via the 'nhl' parameter.

WAF Coverage Analysis

Open Redirect Medium WAF Coverage

OWASP: A01:2021 Broken Access Control

941xxx - XSS / XXE

Affected Software

VendorProductVersion
newformaproject_centerup to 2024.1

References

Back to CVE Database