Gallery

Contacts

405 W. Greenlawn Ave Lansing, Michigan 48910

contact@techjacksolutions.com

+1-616-320-4064

An open redirect vulnerability (CVE-2026-14632) has been disclosed in the open-source Ecommerce-CodeIgniter-Bootstrap project maintained by kirilkirkov. The flaw allows an attacker to craft a malicious URL hosted on the legitimate application domain that silently redirects users to attacker-controlled sites, enabling phishing and credential harvesting campaigns. Organizations running this e-commerce application with internet-facing deployments should assess exposure promptly, though CISA has not added this to the Known Exploited Vulnerabilities catalog and severity is rated medium.

Author

Tech Jacks Solutions