Register
Login
Toggle navigation
SaaS Solutions
Vulnerability Intelligence
Pricing
Vulnerabilities
Reports
Blog
Contact Us
Main
Vulnerability Database
CWE List
With exploit
With patch
CWE-939 - Improper Authorization in Handler for Custom URL Scheme
Description
The software uses a handler for a custom URL scheme, but it does not properly restrict which actors can invoke the handler using the scheme.
Latest vulnerabilities for CWE-939
Multiple vulnerabilities in IBM Application Performance Management
2022-11-16
High
Yes
Multiple vulnerabilities in Pale Moon
2022-11-09
Medium
Yes
Oracle Solaris update for third-party software
2022-10-20
High
Yes
Improper Authorization in Handler for Custom URL Scheme in Lemon8 App
2022-10-19
Low
Yes
Multiple vulnerabilities in Mozilla Thunderbird
2022-06-29
High
Yes
Multiple vulnerabilities in Mozilla Firefox
2022-06-29
High
Yes
Multiple vulnerabilities in Firefox ESR
2022-06-29
High
Yes
Information disclosure in Cisco AppDynamics Controller
2022-06-16
Medium
Yes
Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2022-02-08
High
Yes
Improper Authorization in Handler for Custom URL Scheme in Yappli app
2022-01-04
Low
Yes
References
Description of CWE-939 on Mitre website