URL Redirection to Untrusted Site (βOpen Redirectβ) vulnerability in Apache Software Foundation Apache Helix UI component.This issue affects Apache Helix all releases from 0.8.0 to 1.0.4.
Solution: removed the the forward component since it was improper designed for UI embedding.
User please upgrade to 1.1.0 to fix this issue.
[
{
"defaultStatus": "unaffected",
"product": "Apache Helix",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "1.0.4",
"status": "affected",
"version": "0.8.0",
"versionType": "custom"
}
]
}
]