IFTOP by WellChoose: Malicious Redirects Possible via Crafted URLs

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.1

IFTOP by WellChoose: Malicious Redirects Possible via Crafted URLs

CVE-2026-3824

Summary

IFTOP, a product by WellChoose, has a security weakness that could trick users into visiting fake websites. This means an attacker could potentially trick authorized users into visiting a malicious site. To stay safe, ensure you're using the latest version of IFTOP.

Original title

IFTOP developed by WellChoose has an Open redirect vulnerability, allowing authenticated remote attackers to craft a URL that tricks users into visiting malicious website.

Original description

IFTOP developed by WellChoose has an Open redirect vulnerability, allowing authenticated remote attackers to craft a URL that tricks users into visiting malicious website.

nvd CVSS3.1 6.1

nvd CVSS4.0 5.1

Vulnerability type

CWE-601 Open Redirect

https://www.twcert.org.tw/en/cp-139-10756-73f66-2.html
https://www.twcert.org.tw/tw/cp-132-10755-94136-1.html

Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026