Home / Vulnerability Intelligence / CVE-2026-6795

CVE-2026-6795 - Vulnerability Analysis

CriticalCVSS: 9.6

Last Updated: May 7, 2026

DivvyDrive Information Technologies Inc. DivvyDrive - Open Redirect

Published: May 7, 2026Updated: May 7, 2026Remote Exploitable

Overview

DivvyDrive Information Technologies Inc. DivvyDrive 4.8.2.9 to before 4.8.3.2 contains an open redirect caused by parameter injection, letting attackers redirect users to untrusted sites, exploit requires crafted URL parameters.

Severity & Score

Severity: Critical

CVSS Score: 9.6

Impact

Attackers can redirect users to malicious sites, facilitating phishing or token theft.

Mitigation

Upgrade to version 4.8.3.2 or later.

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0182

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-6795
Severity: Critical
CVSS Score: 9.6
Type: open_redirect
Status: rejected

CWE

CWE-601

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H