CWE-1022 (使用windows.opener访问指向不可信目标的web链接) — Vulnerability Class 12

12 vulnerabilities classified as CWE-1022 (使用windows.opener访问指向不可信目标的web链接). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Paused
CVE-2025-59842	JupyterLab LaTeX typesetter links did not enforce `noopener` attribute — jupyterlab	6.5	-	2025-09-26
CVE-2025-42941	Reverse Tabnabbing vulnerability in SAP Fiori (Launchpad) — SAP Fiori (Launchpad)	3.5	Low	2025-08-12
CVE-2025-33014	IBM Sterling B2B Integrator and IBM Sterling File Gateway link injection — Sterling B2B Integrator	5.4	Medium	2025-07-18
CVE-2024-39727	IBM Engineering Lifecycle Optimization - Engineering Insights tabnabbing — Engineering Insights	6.1	Medium	2024-12-25
CVE-2018-25089	glb Meetup Tag Extension Link Attribute reverse tabnabbing — Meetup Tag Extension	3.5	Low	2023-08-28
CVE-2022-4927	ualbertalib NEOSDiscovery _refworks.html.erb reverse tabnabbing — NEOSDiscovery	5.5	Medium	2023-03-05
CVE-2018-25058	Twitter-Post-Fetcher Link Target twitterFetcher.js reverse tabnabbing — Twitter-Post-Fetcher	4.2	Medium	2022-12-29
CVE-2020-36624	ahorner text-helpers translation.rb reverse tabnabbing — text-helpers	6.3	Medium	2022-12-22
CVE-2022-2600	Auto-hyperlink URLs <= 5.4.1 - Tab Nabbing — Auto-hyperlink URLs	5.4	-	2022-08-22
CVE-2022-1583	External Links in New Window / New Tab < 1.43 - Tabnabbing — External Links in New Window / New Tab	6.5	-	2022-05-30
CVE-2021-33697	SAP ERP 安全漏洞 — SAP BusinessObjects Business Intelligence Platform (SAPUI5)	6.1	-	2021-09-15
CVE-2021-39112	Atlassian Jira 输入验证错误漏洞 — Jira Server	6.1	-	2021-08-25

Vulnerabilities classified as CWE-1022 (使用windows.opener访问指向不可信目标的web链接) represent 12 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Support Us — Your donation helps us keep running

CWE-1022 (使用windows.opener访问指向不可信目标的web链接) — Vulnerability Class 12